Citrix has issued a security update for Citrix Hypervisor vulnerabilities, that may each allow privileged code in a guest VM to cause the host to crash or become unresponsive.
Citrix has addressed a vulnerability in Workspace App for Linux that could result in elevation of privileges as root.
Citrix has addressed a Critical unauthenticated denial of service (DoS) vulnerability CVE-2021-22955 in ADC and Citrix Gateway products.
Citrix has issued a security update for Citrix Hypervisor vulnerabilities, that may collectively allow an attacker to launch privileged code in a guest VM to compromise or crash the host.
Cybersecurity experts from Australia, U.K., and U.S. governments have released a list of the most commonly exploited vulnerabilities over 2020 and 2021.
Citrix has patched a vulnerability (CVE-2021-22928) in Virtual Apps and Desktops that could result in privilege escalation on a Windows Virtual Delivery Agent (VDA).
Citrix has released patches for Citrix Hypervisor that address two vulnerabilities. If exploited, an attacker could exploit privileged code in a guest VM and cause the host to crash or become unresponsive.
Advanced persistent threat actors (APTs) are exploiting multiple legacy vulnerabilities in combination with newer “Zerologon” to target government networks, critical infrastructure, and elections organizations.
Chinese Ministry of State Security (MSS)-affiliated cyber threat actors are targeting U.S. government agencies, as well as exploiting four popular vulnerabilities over the past 12 months.
U.S. government cybersecurity experts are providing guidance on the “top 10” most commonly exploited vulnerabilites. The alert helps highlight the importance of patching and prioritizing vulnerabilities with known exploits.