Citrix Bleed (CVE-2023-4966): Patch Is Not Enough — Kill the Sessions
Citrix Bleed — CVE-2023-4966 — is one of those bugs where the CVSS number under-sold how people were actually getting ransomed. Memory disclosure on NetScaler ADC / Gateway-style …
Continue reading →