FortiGuard
Fortinet’s Global Threat Intelligence and Research
Pwalia
Staff
Staff
Article Id 282609

 

Description

CVE-2023-4966 is being widely exploited, with multiple threat actors, including ransomware groups, targeting internet-accessible NetScaler ADC and Gateway instances. After exploiting CVE-2023-4966, the attackers may engage in network reconnaissance, stealing account credentials and moving laterally via RDP.

CVEs

CVE-2023-4966

Severity

High

Posted On

Nov 02, 2023

Outbreak Report Link

https://www.fortiguard.com/outbreak-alert/citrix-bleed-attack

Contributors