CVE-2023-4966

CVE Database · CVE-2023-4966

CVE-2023-4966

· CRITICALAnalyzed

CVSS v3.1

9.4

EPSS

100.00%

Published

Oct 10, 2023

Modified

Oct 24, 2025

CISA Known Exploited Vulnerability

Added: 2023-10-18 · Due: 2023-11-08

Apply mitigations and kill all active and persistent sessions per vendor instructions [https://www.netscaler.com/blog/news/cve-2023-4966-critical-security-update-now-available-for-netscaler-adc-and-netscaler-gateway/] OR discontinue use of the product if mitigations are unavailable.

Public PoC / Exploit (10)

All weaponized →

NucleiNuclei detection template TrickestTrickest PoC index GitHub PoCChocapikk/CVE-2023-4966★79 GitHub PoCdinosn/citrix_cve-2023-4966★11 GitHub PoCRevoltSecurities/CVE-2023-4966★10 GitHub PoCmlynchcogent/CVE-2023-4966-POC★8 GitHub PoCcertat/citrix-logchecker★5 GitHub PoCmorganwdavis/overread★2 GitHub PoCIceBreakerCode/CVE-2023-4966★1 GitHub PoC0xKayala/CVE-2023-4966★0

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA  virtual server.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Weaknesses (CWE)

CWE-119

Affected Products (9)

citrix · netscaler_application_delivery_controller (up to 12.1-55.300)vulnerable

citrix · netscaler_application_delivery_controller (up to 13.0-92.19)vulnerable

citrix · netscaler_application_delivery_controller (up to 13.1-37.164)vulnerable

citrix · netscaler_application_delivery_controller (up to 13.1-49.15)vulnerable

citrix · netscaler_application_delivery_controller (up to 14.1-8.50)vulnerable

citrix · netscaler_gateway (up to 13.0-92.19)vulnerable

citrix · netscaler_gateway (up to 13.1-49.15)