CVE-2023-4966
Description
Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.
Severity: HIGH
CVE ID: CVE-2023-4966
CVSS Score: 7.5
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Severity: CRITICAL
CVE ID: CVE-2023-4966
CVSS Score: 9.4
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
Proof Of Concept
Nuclei Templates for CVE-2023-4966
Refrence: Project Discovery GitHub
Chocapikk
Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.
Refrence: GitHub
dinosn
Citrix CVE-2023-4966 from assetnote modified for parallel and file handling
Refrence: GitHub
senpaisamp
Proof Of Concept for te NetScaler Vuln
Refrence: GitHub
mlynchcogent
Proof Of Concept for te NetScaler Vuln
Refrence: GitHub
IceBreakerCode
Refrence: GitHub
0xKayala
CVE-2023-4966 - NetScaler ADC and NetScaler Gateway Memory Leak Exploit
Refrence: GitHub
certat
Parse citrix netscaler logs to check for signs of CVE-2023-4966 exploitation
Refrence: GitHub
RevoltSecurities
An Exploitation script developed to exploit the CVE-2023-4966 bleed citrix information disclosure vulnerability
Refrence: GitHub
s-bt
Scripts to get infos
Refrence: GitHub
byte4RR4Y
Programm to exploit a range of ip adresses
Refrence: GitHub
jmussmann
Python script to search Citrix NetScaler logs for possible CVE-2023-4966 exploitation.
Refrence: GitHub
morganwdavis
Simulates CVE-2023-4966 Citrix Bleed overread bug
Refrence: GitHub