Security updates have been issued by Citrix to fix three vulnerabilities, including a critical authentication bypass bug, impacting its Application Delivery Controller and Gateway offerings, The Hacker News reports.
Threat actors could leverage the flaws, tracked as CVE-2022-27510, CVE-2022-27513, and CVE-2022-27516, to secure authorized accounts, facilitate remote desktop takeovers, and bypass login brute-force attempt defenses provided that the vulnerable Gateway instances are configured as a VPN or as an authentication, authorization and accounting virtual server for CVE-2022-27516.
Moreover, setting up the RDP proxy functionality and the "Max Login Attempts" user lockout functionality are required for exploiting CVE-2022-27513 and CVE-2022-27516, respectively.
All of the vulnerabilities have been identified and reported by Securitum researcher Jarosaw Jahrek Kamiski.
"Affected customers of Citrix ADC and Citrix Gateway are recommended to install the relevant updated versions of Citrix ADC or Citrix Gateway as soon as possible," said Citrix, which added that those depending on Citix-managed cloud services need not act on the flaws.
Endpoint/Device Security, Identity
Citrix ADC, Gateway vulnerabilities addressed
An In-Depth Guide to Identity
Get essential knowledge and practical strategies to fortify your identity security.
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds