Rewterz Threat Advisory – CVE-2019-19781 – Citrix Application Delivery Controller and Citrix Gateway RCE Vulnerability

December 24, 2019

Severity

High

Analysis Summary

A vulnerability has been identified in Citrix Application Delivery Controller (ADC) formerly known as NetScaler ADC and Citrix Gateway formerly known as NetScaler Gateway that, if exploited, could allow an unauthenticated attacker to perform arbitrary code execution.

Impact

Arbitrary code execution

Affected Vendors

Citrix

Affected Products

Citrix ADC and Citrix Gateway version 13.0 all supported builds
Citrix ADC and NetScaler Gateway version 12.1 all supported builds
Citrix ADC and NetScaler Gateway version 12.0 all supported builds
Citrix ADC and NetScaler Gateway version 11.1 all supported builds
Citrix NetScaler ADC and NetScaler Gateway version 10.5 all supported builds

Remediation

Upgrade to fixed versions.

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Citrix Warns of Active Exploits on NetScaler Zero-Day Vulnerability

CVE-2025-6543 – Citrix NetScaler ADC and NetScaler Gateway Vulnerability

Multiple D-Link DIR-619L Vulnerabilities

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – OilRig targets LANDesk Agent users via PowDesk

Rewterz Threat Advisory – Dropbox For Windows Zero-Day Vulnerability