Citrix has recently announced that it has patched 11 vulnerabilities in its various networking products – including ADC, Gateway, and SD-WAN. The features can be exploited for getting information, authorization bypass, initiating DoS attacks, XSS attacks, and code injection.
The company has highlighted that the flaws are not linked with CVE-2019-19781 – which
was exploited in many attacks. The security gap was exploited by the profit-driven
cybercriminals as well as the state-sponsored threat actors.
Thus, along with a security advisory, Citrix CISO has shared details of the vulnerabilities to
avoid uncertainty and to prevent the potential for misconception in the industry.