CVE-2023-4966

UnscoredEPSS 100.0%CISA KEVCWE-119 · Improper Restriction of Memory Buffer

Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for sensitive information disclosure when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.

References

NVD MITRE CVE.org CISA KEV

Community ground truth

Community verdict

2 verdicts

Not a real issue

Includes TruePositive's curated baseline from public sources — community verdicts accrue on top.

to add your verdict.

Community real-world severity: Critical (Critical 2)

Field notes & remediation

Verdicts are the quick signal — notes are the evidence and fixes behind them.

0
Field note · Priya NairCurated
Leaks valid session tokens from NetScaler/ADC memory — attackers replay them and walk past MFA. Heavily abused by ransomware crews (LockBit). Patching is not enough on its own.
0
Remediation · Yuki TanakaCurated
Patch NetScaler, then terminate all active sessions (kill icaconnection -all, kill pcoipConnection -all, etc.). Stolen tokens stay valid through a patch otherwise.