Security
Headlines
HeadlinesLatestCVEs

Headline

Critical Citrix Bugs Impact All ADM Servers, Agents

Citrix ADM vulnerabilities could lead to admin password reset and disruption of ADM license service, company warns.

DARKReading
#vulnerability

Citrix is advising users of its Application Delivery Management (ADM) solutions to update their systems against a pair of newly discovered vulnerabilities.

Tracked under CVE-2022-27511, the first vulnerability could allow system corruption leading to the admin password being reset after reboot. The second, CVE-2022-27512, if exploited, could allow a threat actor to temporarily disrupt the ADM license service.

Although a fix has been issued, customers using outdated, unsupported versions are advised by Citrix to upgrade.

Also, “Citrix strongly recommends that network traffic to the Citrix ADM’s IP address is segmented, either physically or logically, from standard network traffic,” the vulnerability notice from Citrix recommended. “Doing so diminishes the risk of exploitation of these issues.”

Keep up with the latest cybersecurity threats, newly-discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

Subscribe

Related news

Critical Citrix ADM vulnerability creates means to reset admin passwords

Improper access control flaw poses DoS-to-RCE hijack risk

CVE-2022-27512: Citrix Application Delivery Management Security Bulletin for CVE-2022-27511 and CVE-2022-27512

Temporary disruption of the ADM license service. The impact of this includes preventing new licenses from being issued or renewed by Citrix ADM.

CVE-2022-27512: Citrix Application Delivery Management Security Bulletin for CVE-2022-27511 and CVE-2022-27512

Temporary disruption of the ADM license service. The impact of this includes preventing new licenses from being issued or renewed by Citrix ADM.

DARKReading: Latest News

Microsoft Pulls Exchange Patches Amid Mail Flow Issues