CVE-2023-6548

Citrix NetScaler ADC and NetScaler Gateway contain a code injection vulnerability that allows for authenticated remote code execution on the management interface with access to NSIP, CLIP, or SNIP. Vendor/Product: Citrix NetScaler ADC and NetScaler Gateway. Added to CISA KEV 2024-01-17; required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.