New round of bugs found in Citrix software, but this time a patch is ready

Six months ago, a critical vulnerability found in software made by Citrix set off an uncomfortable few weeks for the virtual private networking vendor and the Fortune 500 companies that rely on its products.

The new bugs likely won’t have as big of a security impact as the Citrix vulnerability that emerged in December, according to Justin Elze, a principal security consultant at security company TrustedSec. Exploiting many of the new bugs requires access to the IP address used to manage the software. That, generally speaking, isn’t sitting on the internet.

Read the article: https://www.cyberscoop.com/citrix-netscaler-adc-vulnerabilities-july-2020/