Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2023-4966

CRITICAL
Published 2023-10-10T13:12:17.644Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-4966. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1
9.4
/10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14
0.944
probability
of exploitation in the wild

There is a 94.4% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25
Exploit Probability
Percentile: 1.000
Higher than 100.0% of all CVEs

Attack Vector Metrics

Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED

Impact Metrics

Confidentiality
HIGH
Integrity
HIGH
Availability
LOW

Description

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA  virtual server.

Available Exploits

Citrix Bleed - Leaking Session Tokens

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA ?virtual?server.

ID: CVE-2023-4966
Author: DhiyaneshDK High

References:

Related News

No news articles found for this CVE.

Affected Products

Citrix

NetScaler ADC

Affected Versions:

14.1 13.1 13.0 13.1-FIPS 12.1-FIPS 12.1-NDcPP
Citrix

NetScaler Gateway

Affected Versions:

14.1 13.1 13.0

Known Exploited Vulnerability

This vulnerability is actively being exploited in the wild

View KEV Details

Remediation Status

Overdue

Due Date

November 8, 2023

Added to KEV

October 18, 2023

Required Action

Apply mitigations and kill all active and persistent sessions per vendor instructions [https://www.netscaler.com/blog/news/cve-2023-4966-critical-security-update-now-available-for-netscaler-adc-and-netscaler-gateway/] OR discontinue use of the product if mitigations are unavailable.

Affected Product

Vendor/Project: Citrix
Product: NetScaler ADC and NetScaler Gateway

Ransomware Risk

Known Ransomware Use
KEV Catalog Version: 2025.01.24 Released: January 24, 2025

Social Media Intelligence

Real-time discussions and threat intelligence from social platforms

1 post
Reddit 1 month, 1 week ago
Immediate_Gold9789
Exploit PoC Payload

🔥 Most Brutal VPN Exploits Exposed — A Technical Breakdown By CyberDudeBivash – Ruthless, Engineering-Grade Threat Intel https://preview.redd.it/kmgikig5tsjf1.png?width=1536&format=png&auto=webp&s=8a0dc329b5e31ebb657f9e2b65d1e37721ff9ab6 # 1. Introduction Virtual Private Networks (VPNs) are the **backbone of remote access security**, yet they remain **prime targets** for advanced persistent threats (APTs) and ransomware groups. Over the last decade, **VPN …

Also mentions: CVE-2024-21762 CVE-2024-21887 CVE-2023-3519 CVE-2023-46805 CVE-2022-42475 CVE-2020-2021 CVE-2019-11510 CVE-2019-19781 CVE-2018-13379
1
1.0
View Original High Risk

References

https://support.citrix.com/article/CTX579459
http://packetstormsecurity.com/files/175323/Citrix-Bleed-Session-Token-Leakage-Proof-Of-Concept.html

HackerOne Reports

Out-Of-Bounds Memory Read on ███ None
maskedpersian
U.S. Dept Of Defense
Out-of-bounds Read
View Report
Published: 2023-10-10T13:12:17.644Z
Last Modified: 2025-07-28T19:43:50.439Z
Copied to clipboard!