CVE-2017-5933
Citrix NetScaler ADC and NetScaler Gateway 10.5 before Build 65.11, 11.0 before Build 69.12/69.123, and 11.1 before Build 51.21 randomly generates GCM nonces, which makes it marginally easier for remote attackers to obtain the GCM authentication key and spoof data by leveraging a reused nonce in a session and a "forbidden attack," a similar issue to CVE-2016-0270.
| Software | From | Fixed in |
|---|---|---|
| citrix / netscaler_application_delivery_controller_firmware | - | 10.5.65.11.x |
| citrix / netscaler_application_delivery_controller_firmware | - | 11.0.69.12.x |
| citrix / netscaler_application_delivery_controller_firmware | - | 11.1.51.21.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime