Citrix Product Security Update Advisory (CVE-2024-8534)
Overview
An update has been released to address vulnerabilities in Citrix Products. Users of the affected versions are advised to update to the latest version.
Affected Products
CVE-2024-8534
- NetScaler (ADC, Gateway) versions: 14.1 (inclusive) ~ 14.1-29.72 (excluded)
- NetScaler (ADC, Gateway) versions: 13.1 (inclusive) ~ 13.1-55.34 (excluded)
- NetScaler ADC versions: 13.1-FIPS (inclusive) ~ 13.1-37.207 (excluded)
- NetScaler ADC versions: 12.1-FIPS (inclusive) ~ 12.1-55.321 (excluded)
- NetScaler ADC versions: 12.1-NDcPP (inclusive) ~ 12.1-55.321 (excluded)
Resolved Vulnerabilities
Memory corruption and denial of service vulnerability due to a memory safety vulnerability in NetScaler ADC and Gateway (CVE-2024-8534)
Vulnerability Patches
Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.
CVE-2024-8534
- NetScaler (ADC, Gateway) version: 14.1-29.72 or later version
- NetScaler (ADC, Gateway) version: 13.1-55.34 or later version
- NetScaler ADC version: 13.1-37.207 or later version
- NetScaler ADC version: 12.1-55.321 or later version
- NetScaler ADC version: 12.1-55.321 or later version
References Sites
[1] CVE-2024-8534 Detail
https://nvd.nist.gov/vuln/detail/CVE-2024-8534
[2] NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2024-8534 and CVE-2024-8535