National Cyber Security Centre
Alert: Actors exploiting Citrix products vulnerability
An NCSC alert detailing the investigation into the exploitation of a critical vulnerability in Citrix products.
The NCSC is investigating exploitations of a critical vulnerability in the Citrix Application Delivery Controller (ADC) and Citrix Gateway that could allow an unauthenticated attacker to perform arbitrary code execution on a network. The vulnerability is CVE-2019-19781 and its exploitation has been widely reported online in early January.
The following Citrix products are affected:
- Citrix ADC and Citrix Gateway version 13.0 all supported builds
- Citrix ADC and NetScaler Gateway version 12.1 all supported builds
- Citrix ADC and NetScaler Gateway version 12.0 all supported builds
- Citrix ADC and NetScaler Gateway version 11.1 all supported builds
- Citrix NetScaler ADC and NetScaler Gateway version 10.5 all supported builds
Citrix initially disclosed this vulnerability in an Advisory on 17 December 2019. There is currently no patch, although Citrix have advised customers that updates for affected products will be available from 20 January 2020 onwards, depending on the product.
Before a patch is released, Citrix have provided mitigation advice which the NCSC strongly advises organisations to implement. Full details of how to mitigate are on the Citrix website.
Organisations are advised to check the Citrix website to keep up to date with patch releases.
The NCSC also recommends that organisations carry out searches across their networks to identify whether exploitation has taken place, if they did not implement these mitigations before Citrix disclosed the vulnerability on 17 December 2019.
Click here for the full press release
Original article link: https://www.ncsc.gov.uk/news/citrix-alert
Latest News from
National Cyber Security Centre
UK and allies expose Snake malware threat from Russian cyber actors10/05/2023 13:10:00
Snake malware and its variants have been a core component in Russian operations carried out by Centre 16 of Russia’s Federal Security Service (FSB).
UK and international partners publish joint guidance to help communities create secure smart cities21/04/2023 10:05:00
New guide, published during CYBERUK 2023, sets out cyber security best practices for creating connected places.
Peace process accelerated Northern Ireland's rise as global cyber security hub, UK cyber chief says21/04/2023 09:05:00
Northern Ireland continues to play a critical role in securing UK-wide online resilience 25 years after the pivotal accord was signed.
New analysis highlights strength of Ukraine's defence against “unprecedented” Russian offensive20/04/2023 15:10:00
Report from the European Cyber Conflict Research Initiative (ECCRI) gives new insights into the role of cyber criminals and political hacktivists in a conflict, and critical questions around industry support to Ukraine's cyber resilience.
UK and international partners share advice to help turn the dial on tech product security13/04/2023 16:15:00
New guide calls on manufacturers to ensure technology products are made secure by design and by default.
Business leaders urged to grip cyber risks with fresh support from experts30/03/2023 17:20:00
Refreshed guidance from the NCSC will support board members govern online risk.
NCSC launches flagship new services to help millions of small organisations stay safe online22/03/2023 14:20:00
New online tools for small organisations to help find and fix any cyber security issues.
International leaders to take centre stage at CYBERUK 2023 in Belfast15/03/2023 16:15:00
Top officials from the U.S., Canada, New Zealand and Singapore amongst speakers for CYBERUK 2023 announced yesterday.