Citrix strongly urges admins to apply security updates for an ‘Critical’ zero-day vulnerability (CVE-2022-27518) in Citrix ADC and Gateway that is actively exploited by state-sponsored hackers to gain access to corporate networks.
This new vulnerability allows an unauthenticated attacker to execute commands remotely on vulnerable devices and take control over them.
Citrix is warning admins to install the latest update “as soon as possible” as the vulnerability is actively exploited in attacks.
Read more…
Source: Bleeping Computer