On February 18, 2025, Cloud Software Group released builds to fix CVE-2024-12284, which affects NetScaler Console. This vulnerability has been discovered in NetScaler Console (formerly NetScaler ADM) and NetScaler Console Agent and has been assigned a CVSS score of 8.8. The issue arises due to inadequate privilege management and could be exploited by an authenticated … [Read more...] about CVE-2024-12284: High-severity security update for NetScaler Console
News
Achieving zero-trust access with FIPS-certified NetScaler 13.1
In today's increasingly complex and regulated digital landscape, ensuring robust security measures is paramount, particularly for government agencies and organizations handling sensitive information. The Federal Information Processing Standards (FIPS) provide a benchmark for cryptographic modules with regard to data security and integrity. FIPS compliance is essential … [Read more...] about Achieving zero-trust access with FIPS-certified NetScaler 13.1
CVE-2024-8534 and CVE-2024-8535: High severity security updates for NetScaler ADC and NetScaler Gateway
On November 12, 2024, Cloud Software Group released builds to fix CVE-2024-8534 and CVE-2024-8535, which affect NetScaler ADC and NetScaler Gateway. CVE-2024-8534 This vulnerability is a memory safety vulnerability, and successful exploitation can lead to memory corruption and denial of service. In order for this vulnerability to be exploited any of the following … [Read more...] about CVE-2024-8534 and CVE-2024-8535: High severity security updates for NetScaler ADC and NetScaler Gateway
NetScaler achieves FIPS 140-3 validation, reinforcing commitment to robust data security
The NetScaler 13.1-FIPS MPX platform has received the FIPS 140-3 Level 2 validation from NIST-CMVP (certificate #4830), underscoring our dedication to providing secure, interoperable solutions that meet the highest data security and compliance standards for our customers in the federal and state government and enterprise sectors. This achievement demonstrates that NetScaler … [Read more...] about NetScaler achieves FIPS 140-3 validation, reinforcing commitment to robust data security
Guidance on CVEs that may affect your NetScaler deployment
On July 9, 2024, NetScaler released builds to fix the following CVEs: Third-Party CVE: All five of these CVEs apply only to customer-managed instances of NetScaler. If you have NetScaler-managed infrastructure, such as NetScaler Console Service, you do not need to take any action. CVE-2024-6235 and CVE-2024-6236 CVE-2024-6235, identified as a critical … [Read more...] about Guidance on CVEs that may affect your NetScaler deployment