Mitigation Instructions for Drupal SEoL (6.x)
Subject: Drupal Unsupported Version Detection (6.x)
1 min read
CyRisk Vulnerability Management Team
:
Feb 23, 2024 4:42:57 PM
SUBJECT: Critical DoS Vulnerability (CVE-2023-6549) in Citrix NetScaler ADC & Gateway - Immediate Update Required
TECH STACK: Citrix NetScaler ADC and NetScaler Gateway versions 12.1 through 14.1 (excluding 12.1-55.302 and 13.1-37.176)
DATE(S) ISSUED: 01/17/2024
NVD Last Modified: 01/24/2024
CRITICALITY: HIGH (Base Score 7.5)
OVERVIEW:
A critical denial-of-service (DoS) vulnerability exists in Citrix NetScaler ADC and NetScaler Gateway due to improper restriction of operations within a memory buffer. This vulnerability allows unauthenticated attackers to crash affected devices, potentially causing service outages and disruption. This vulnerability is actively exploited in the wild, posing a significant risk to organizations using vulnerable versions.
SOLUTION/MITIGATION:
Confirmation & Additional Information:
REFERENCES:
Subject: Drupal Unsupported Version Detection (6.x)
Subject: Microsoft SQL Server Unsupported Version Detection
Subject: Python Unsupported Version Detection