CVE-2024-8534

Published: Nov 12, 2024

Modified: Nov 21, 2024

PUBLISHED

Description

Memory safety vulnerability leading to memory corruption and Denial of Service in NetScaler ADC and Gateway if the appliance must be configured as a Gateway (VPN Vserver) with RDP Feature enabled OR the appliance must be configured as a Gateway (VPN Vserver) and RDP Proxy Server Profile is created and set to Gateway (VPN Vserver) OR the appliance must be configured as a Auth Server (AAA Vserver) with RDP Feature enabled

Vendor	Product	Versions
NetSclaer	NetScaler ADC	affected `14.1 - < 29.72` affected `13.1 - < 55.34` affected `13.1-FIPS - < 37.207` affected `12.1-FIPS - < 55.321` affected `12.1-NDcPP - < 55.321`
NetScaler	NetScaler Gateway	affected `14.1 - < 29.72` affected `13.1 - < 55.34` affected `13.1-FIPS - < 37.207` affected `12.1-FIPS - < 55.321` affected `12.1-NDcPP - < 55.321`

Weaknesses (CWE)

CWE-119

References

https://support.citrix.com/s/article/CTX691608-netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20248534-and-cve20248535?language=en_US

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-8534

Description

Affected Products

Weaknesses (CWE)

References