Citrix Archives - Securezoo

CISA adds 6 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include iOS, Microsoft, Fortinet, Citrix and Veeam vulnerabilities)

Cybersecurity Attacks, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / December 18, 2022 / Citrix, CVE-2022-26500, CVE-2022-26501, CVE-2022-27518, CVE-2022-42475, CVE-2022-42856, CVE-2022-44698, Defender, Fortinet, iOS, Microsoft, SmartScreen, VPN

The Cybersecurity and Infrastructure Security Agency (CISA) has added six vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include iOS, Microsoft, Fortinet, Citrix and Veeam vulnerabilities.

CISA adds 6 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include iOS, Microsoft, Fortinet, Citrix and Veeam vulnerabilities) Read More »

Citrix fixes 2 Critical ADM vulnerabilities (CVE-2022-27511 and CVE-2022-27512)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / June 16, 2022 / ADM, Citrix, CVE-2022-27511, CVE-2022-27512

Citrix has fixed two Critical Application Delivery Management (ADM) vulnerabilities (CVE-2022-27511 and CVE-2022-27512).

Citrix fixes 2 Critical ADM vulnerabilities (CVE-2022-27511 and CVE-2022-27512) Read More »

PRC state-sponsored cyber actors routinely exploit these 16 network device vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / June 8, 2022 / CISA, Cisco, Citrix, CVE-2017-6862, CVE-2018-0171, CVE-2018-13382, CVE-2018-14847, CVE-2019-11510, CVE-2019-15271, CVE-2019-1652, CVE-2019-16920, CVE-2019-19781, CVE-2019-7192, CVE-2019-7193, CVE-2019-7194, CVE-2019-7195, CVE-2020-29583, CVE-2020-8515, CVE-2021-22893, FBI, MicroTik, NETGEAR, NSA, Pulse, QNAP, SOHO, ZyXEL

The FBI, NSA and CISA coauthored a joint Cybersecurity Advisory detailing how People’s Republic of China (PRC) state-sponsored cyber actors continue to exploit publicly known vulnerabilities to gain access to a broad network of compromised infrastructure.

PRC state-sponsored cyber actors routinely exploit these 16 network device vulnerabilities Read More »

Citrix addresses 4 Hypervisor vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / January 15, 2022 / Citrix, Hypervisor, XenServer

Citrix has issued a security update for Citrix Hypervisor vulnerabilities, that may each allow privileged code in a guest VM to cause the host to crash or become unresponsive.

Citrix addresses 4 Hypervisor vulnerabilities Read More »

Citrix addresses vulnerability (CVE-2022-21825) in Workspace App for Linux

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / January 11, 2022 / Citrix, CVE-2022-21825, Workspace

Citrix has addressed a vulnerability in Workspace App for Linux that could result in elevation of privileges as root.

Citrix addresses vulnerability (CVE-2022-21825) in Workspace App for Linux Read More »

Citrix addresses Critical DoS vulnerability in ADC and Citrix Gateway products

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / November 11, 2021 / AAA virtual server, ADC, Citrix, CVE-2021-22955, Gateway, SD-WAN, VPN, WANOP

Citrix has addressed a Critical unauthenticated denial of service (DoS) vulnerability CVE-2021-22955 in ADC and Citrix Gateway products.

Citrix addresses Critical DoS vulnerability in ADC and Citrix Gateway products Read More »

Citrix Hypervisor security updates

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / September 10, 2021 / Citrix, CVE-2021-28694, CVE-2021-28697, CVE-2021-28698, CVE-2021-28699, CVE-2021-28701, Hypervisor

Citrix has issued a security update for Citrix Hypervisor vulnerabilities, that may collectively allow an attacker to launch privileged code in a guest VM to compromise or crash the host.

Citrix Hypervisor security updates Read More »

Top 30 most commonly exploited vulnerabilities over 2020 and 2021

Cybersecurity Attacks, Vulnerabilities & Exploits / Frank Crast / July 29, 2021 / Atlassian, BIG-IP, Citrix, CVE 2018-13379, CVE 2019-11510, CVE 2019-18935, CVE 2020-15505, CVE 2020-5902, CVE-2017-11882, CVE-2018-13379, CVE-2018-7600, CVE-2019-0604, CVE-2019-11580, CVE-2019-19781, CVE-2019-5591, CVE-2020-0787, CVE-2020-12812, CVE-2020-1472, CVE-2021-21985, CVE-2021-22894, CVE-2021-22899, CVE-2021-27101, CVE-2021-27102, CVE-2021-27103, CVE-2021-27104, Drupal, F5, Fortinet, MobileIron, Netlogon, Office, Pulse, Zerologon

Cybersecurity experts from Australia, U.K., and U.S. governments have released a list of the most commonly exploited vulnerabilities over 2020 and 2021.

Top 30 most commonly exploited vulnerabilities over 2020 and 2021 Read More »

Citrix patches privileged escalation vulnerability in Virtual Apps and Desktops

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / July 17, 2021 / Citrix, CVE-2021-2292, VDA, Virtual Apps and Desktops, Windows

Citrix has patched a vulnerability (CVE-2021-22928) in Virtual Apps and Desktops that could result in privilege escalation on a Windows Virtual Delivery Agent (VDA).

Citrix patches privileged escalation vulnerability in Virtual Apps and Desktops Read More »

Citrix fixes 3 Hypervisor vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / March 31, 2021 / Citrix, CVE-2020-35498, CVE-2021-28038, CVE-2021-28688, Hypervisor, LTSR

Citrix has released patches for Citrix Hypervisor that address two vulnerabilities. If exploited, an attacker could exploit privileged code in a guest VM and cause the host to crash or become unresponsive.

Citrix fixes 3 Hypervisor vulnerabilities Read More »