Ionut Ilascu

Technical details are now available for a recently patched high-severity vuln in Citrix ADC and Gateway > CVE-2023-3467

Researchers at Resillion, credited for the find, explain how the issue could be exploited to achieve root-level privileges.

https://www.resillion.com/escalating-privileges-in-citrix-adc/

Escalating privileges in Citrix ADC - Resillion

Part of Citrix’s solution line-up, Citrix ADC (formerly NetScaler ADC) is an application delivery and load balancing solution. In March 2023, two of Resillion’s ethical hackers (Jorren Geurts & Wouter Rijkbost) identified a vulnerability within Citrix ADC that allowed anyone with access to the management interface to escalate their privileges up to root. Essentially giving […]

Resillion
Jul 20, 2023 at 10:39pmWeb