What you Need To Know About The Critical Citrix Gateway (Netscaler) Vulnerability CVE-2019-19781

  • Webcast Aired Tuesday, 31 Dec 2019 1:00PM EST (31 Dec 2019 18:00 UTC)
  • Speakers: Jason Lam, Johannes Ullrich

Citrix published a critical security bulletin advising users of its Application Delivery Controller (ADC) and Gateway devices of an easily exploited remote code authentication vulnerability. Many organizations are relying on these devices as load balancers, to control access to APIs and to terminate SSL VPNs. An attacker may use this vulnerability to execute code on the device, compromising a critical perimeter security component. In this webcast, you will learn how to protect yourself from this vulnerability and how to detect possible exploit attempts. We will show how attackers find vulnerable devices and discuss if any exploits have already been detected in the wild.

Why is this important:

  • The vulnerability allows unauthenticated, remote code execution on a critical perimeter security device
  • It is estimated that 80,000 organizations are affected
  • Citrix released a bulletin with a fix 2 weeks ago, but the impact of the vulnerability wasn't apparent until earlier this week.