NetScaler security updates

On February 18, 2025, Cloud Software Group released builds to fix CVE-2024-12284, which affects NetScaler Console. This vulnerability has been discovered in NetScaler Console (formerly NetScaler ADM) and NetScaler Console Agent and has been assigned a CVSS score of 8.8.  The issue arises due to inadequate privilege management and could be exploited by an authenticated … [Read more...] about CVE-2024-12284: High-severity security update for NetScaler Console

On November 12, 2024, Cloud Software Group released builds to fix CVE-2024-8534 and CVE-2024-8535, which affect NetScaler ADC and NetScaler Gateway.  CVE-2024-8534 This vulnerability is a memory safety vulnerability, and successful exploitation can lead to memory corruption and denial of service. In order for this vulnerability to be exploited any of the following … [Read more...] about CVE-2024-8534 and CVE-2024-8535: High severity security updates for NetScaler ADC and NetScaler Gateway 

On July 9, 2024, NetScaler released builds to fix the following CVEs:  Third-Party CVE: All five of these CVEs apply only to customer-managed instances of NetScaler. If you have NetScaler-managed infrastructure, such as NetScaler Console Service, you do not need to take any action. CVE-2024-6235 and CVE-2024-6236 CVE-2024-6235, identified as a critical … [Read more...] about Guidance on CVEs that may affect your NetScaler deployment

Updated July 9, 2024 Qualys has discovered a remote unauthenticated code execution vulnerability in OpenSSH’s server, sshd, in glibc-based Linux systems. Because this vulnerability is a regression of the previously patched vulnerability CVE-2006-5051, which was reported in 2006, it is being referred to as regreSSHion. The vulnerability has been assigned the CVE identifier … [Read more...] about OpenSSH server vulnerability affects NetScaler customers