News

Critical Citrix Updates Required. Are You Vulnerable?

Jan 2, 2020

News outlets are covering a critical vulnerability which has been identified in Citrix Application Delivery Controller and Citrix Gateway (formerly known as NetScaler ADC and NetScaler Gateway), that, if exploited, could allow an unauthenticated attacker (anyone on the internet) to perform arbitrary code execution, potentially including launching remote access sessions or Citrix published applications. The vulnerability affects all platforms and [NetScaler] ADC versions since v10.5.

Citrix is working on releasing firmware patches to permanently correct the vulnerability; in the meantime, Citrix and IPM are strongly recommending all Citrix ADC/NetScaler customers to immediately apply the temporary mitigation that has been provided by Citrix ( https://support.citrix.com/article/CTX267679 ) to protect their applications and network from attacks. Customers may apply the mitigation steps themselves if they are comfortable doing so. It does require using the CLI and rebooting the affected appliances, so IPM is also on standby to assist customers should they require it. The mitigation does require using the CLI and rebooting the affected appliances, so we are on standby should you require any assistance. Please let us know if you plan on applying the mitigation yourselves or if we can be of service.

Reference: https://www.theregister.co.uk/2019/12/23/patch_now_published_citrix_applications_leave_network_vulnerable_to_unauthorised_access/

https://support.citrix.com/article/CTX267027

Citrix Gateway and ADC vulnerability discovered

Citrix recently issued a CVE bulletin related to an exploit that could allow Unauthorized access to Gateway User Capabilities. The CVE is 2022-27510 and is covered in the following KB article. https://support.citrix.com/article/CTX463706 This vulnerability could allow...

End of Support for vSphere 6.7

vSphere 8 has been announced and VMware has also announced vSphere 6.7 End of Life dates.

Tech Industry Recognition for Newtek’s Cloud Nine Services

Newtek would like to extend its congratulations to members of our Cloud Nine teams for their recent industry recognitions.CitrixAndy Paul President, Cloud Nine ServicesThe Citrix Technology Advocate program recognizes Citrix enthusiasts and experts for their...

Assess Your Risk Tolerance in the Cloud

Recent technical advancements in cloud virtualization and migration have made way for today’s new wave of remote working.  In fact, migrating end user computing (EUC) to the cloud can offer huge advantages to organizations in terms of user productivity, including...