CVE-2023-4966: Citrix Bleed

Score: 9.4
CRITICAL
Published: 2023-10-10Affected: Citrix NetScaler ADC/Gateway 14.1, 13.1, 13.0CWE-119 β†—

What is Citrix Bleed?

A buffer overflow in Citrix NetScaler ADC and Gateway that exposes sensitive information including session tokens. Attackers can hijack authenticated sessions without credentials, bypassing MFA entirely.

Impact & Exploitation

Exploited by LockBit ransomware. Boeing, ICBC, and DP World were compromised. MFA bypass makes this particularly dangerous for VPN and remote access infrastructure.

Related Resources

πŸ” Related CWE Entries

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS9.4
SeverityCRITICAL
CWECWE-119
Published2023-10-10

Tags

citrixvpnransomwarebuffer-overflow

Quick Links

Is your system affected?

Precogs AI detects Citrix Bleed in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2023-4966 Citrix Bleed don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo