Citrix Applications Need Patch To Address Vulnerability

January 9, 2020

Written by wukovits

citrix applications need patch to address vulnerabilityResearchers at Positive Technologies recently discovered a serious vulnerability in Citrix Enterprise products that threatens the security of more than 80,000 companies in 158 countries around the world.

The issue is being tracked as CVE-2019-19781. If it is left unpatched, it puts companies using either product at risk of phishing attacks, malware, cryptojacking attacks ,and DDoS attacks. That is to name just a few.

According to the researchers, the vulnerability impacts all of the company’s enterprise products, including:

  • Citrix ADC and Citrix Gateway 13.0
  • Citrix ADC and NetScaler Gateway 12.1
  • Citrix ADC and Netscaler Gateway 12.0
  • Citrix ADC and Netscaler Gateway 11.1
  • Citrix NetScaler ADC and NetScaler Gateway 10.5

Positive Technologies reported the issue to Citrix earlier in December 2019). The company responded quickly and has already issued a patch. The company urges all users of the software mentioned above to apply the patch immediately, because the issue “could allow an unauthenticated attacker to perform arbitrary code execution.”

Citrix also recommends making configuration changes in the stand-alone system and running commands from the command line interface. That is, according to a recent blog post on the company’s website.

Unfortunately, this vulnerability has been lurking in the shadows since at least 2014, which means that hackers have had plenty of time to exploit the vulnerability. If you’re unable to patch your software in the near future, it’s important to look for any existing exploitations that may already be compromising your system.

This is a serious, globe-spanning threat. Patching it to keep away from danger should be given highest priority. Kudos to Citrix for their rapid response, but given how long this vulnerability has been waiting to be discovered, the fear that there may be others is there. Stay vigilant and apply the patch as soon as you’re able.

Used with permission from Article Aggregator

Bayou Tech

We provide solutions for your business. Find out how we can help.

Related Articles

Key Considerations for Effective Cybersecurity Implementation

Consider this: In the realm of cybersecurity, things often get tangled in the web of "you should do it anyway" arguments. Yet, for busy business owners bombarded with daily "must-dos," deciphering the essentials from the fluff can feel like a cyber maze. We aim to...

Unlocking Small Business Success: The Impact of AI in a Digital Era

In the rapidly evolving business landscape, staying competitive necessitates embracing technological advancements. Artificial Intelligence (AI), once perceived as a luxury for larger enterprises, is now accessible to small businesses, offering new opportunities for...