Citrix ADM vulnerabilities could lead to admin password reset and disruption of ADM license service, company warns.
Citrix is advising users of its Application Delivery Management (ADM) solutions to update their systems against a pair of newly discovered vulnerabilities.
Tracked under CVE-2022-27511, the first vulnerability could allow system corruption leading to the admin password being reset after reboot. The second, CVE-2022-27512, if exploited, could allow a threat actor to temporarily disrupt the ADM license service.
Although a fix has been issued, customers using outdated, unsupported versions are advised by Citrix to upgrade.
Also, "Citrix strongly recommends that network traffic to the Citrix ADM’s IP address is segmented, either physically or logically, from standard network traffic," the vulnerability notice from Citrix recommended. "Doing so diminishes the risk of exploitation of these issues."
About the Author(s)
You May Also Like
The fuel in the new AI race: Data
April 23, 2024Securing Code in the Age of AI
April 24, 2024Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024