Thousands Of Citrix Servers May Be Vulnerable To Attack

Many servers remain unpatched, researchers are warning.

Numerous Citrix ADC and Gateway servers continue to be susceptible to critical vulnerabilities that were reportedly patched by the company weeks ago, according to experts.

Citrix discovered and patched an “Unauthorized access to Gateway user capabilities” flaw in early November 2022; this flaw is now known as CVE-2022-27510. Affected by both products, this vulnerability enables an attacker to gain authorized access to target endpoints (opens in new tab), take remote control of the devices, and bypass the device’s brute force login protection.

Approximately one month later, in mid-December, the company patched a flaw identified as CVE-2022-27518, “Unauthenticated remote arbitrary code execution.” This vulnerability allows threat actors to remotely execute malicious code on the target endpoint.

NSA caution

At least one of them was exploited in the wild as a zero-day vulnerability, according to researchers from NCC Group’s Fox-IT team.

The US National Security Agency (NSA) issued a warning in early December that a hacking group supported by the Chinese government was exploiting the zero-day security flaw.

In an official blog post at the time, Citrix’s chief security and trust officer, Peter Lefkowitz, stated that “limited exploits of this vulnerability have been reported,” but did not specify the number of attacks or the affected industries.

This group of threat actors, sometimes referred to as Manganese, appears to have specifically targeted networks running these Citrix applications to bypass organizational security without having to first steal credentials via social engineering and phishing attacks.

While the majority of endpoints have been patched since the release of the fixes, there are “thousands” of vulnerable servers out there, according to the researchers. At least 28,000 Citrix servers were found to be vulnerable as of 11 November 2022.

The researchers concluded, “We hope this blog increases awareness of these two Citrix CVEs and that our research on version identification contributes to future studies.”

Why Trust Us?

Best Top Reviews Online was established in 2018 to provide our readers with detailed, truthful, and impartial advice on what to buy. We now have millions of monthly users from all over the world and annually evaluate over a thousand products.

The above article was written by the BestTopReviewsOnline team, which consists of some of the most knowledgeable technical experts in the United States. Our team consists of highly regarded writers with vast experience in smartphones, computer components, technology apps, security, and photography, among other fields.

Related Stories

  • All Post
  • Best Picks
  • Explainers
  • How To
  • News
  • Versus
Malware GuLoader Using New Methods to Avoid Security Software

December 26, 2022

Researchers in cyber security have uncovered a vast array of techniques used by the advanced malware downloader GuLoader to circumvent security software. “New shellcode anti-analysis technique attempts to thwart researchers and hostile environments by scanning entire process memory for any…

Get more info

Deals

Reviews

Best Products

Buying Guides

Contact Us

About Us

We provide a platform for our customers to rate and review services and products, as well as the stores that sell them. We research and compare the most popular brands and models before narrowing it down to the top ten, providing you with the most comprehensive and reliable buying advice to help you make your decision.

Disclaimer

BestTopReviewsOnline.com is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to Amazon.com. As an Amazon Associate I earn from qualifying purchases.

 

Address & Map

20 S Santa Cruz Ave, Suite 300, Los Gatos, CA 95030, United States

© 2022 BestTopReviewsOnline.com Pty. Ltd. All Rights Reserved. Licensing: All third-party trademarks, images, and copyrights used on this page are for comparative advertising, criticism, or review. As this is a public forum where users can express their opinions on specific products and businesses, the opinions expressed do not reflect those of BestTopReviewsOnline.com.