AdvisoriesCISAAA23-201AJuly 20, 2023
July 20, 2023
The Cybersecurity and Infrastructure Security Agency (CISA) is issuing a Cybersecurity Advisory to alert network defenders about a critical vulnerability, CVE-2023-3519, affecting NetScaler ADC and NetScaler Gateway. In June 2023, threat actors exploited this zero-day vulnerability to deploy a webshell on a critical infrastructure organization's NetScaler ADC appliance. To assist in identifying system compromise, this advisory offers tactics, techniques, and procedures (TTPs) and detection methods shared by the victim, encouraging critical infrastructure organizations to adopt the guidance. CISA also recommends applying Citrix's patch immediately if no compromise is detected.
July 20, 2023
This vulnerability, as a zero day, would have been impossible to prepare for. Instead, it underscores the importance of automatic patching. At many organizations, especially larger ones, upgrading software is a manual and time consuming process. Each upgrade carries a certain amount of risk, as the change set may be incompatible with other critical applications on the system. However, it is possible to establish a process of safe automated patching - and setting one up should be a top priority.
Be immediately notified of new advisories and associated security tests
AdvisoryCISAAA24-207AJuly 25, 2024
