Rewterz Threat Alert –MosaicLoader – New Malware Hides Itself Among Windows Defender Exclusions to Evade Detection
July 21, 2021Rewterz Threat Advisory –Microsoft Windows Print Spooler Point and Print allows installation of arbitrary queue-specific files
July 21, 2021Rewterz Threat Alert –MosaicLoader – New Malware Hides Itself Among Windows Defender Exclusions to Evade Detection
July 21, 2021Rewterz Threat Advisory –Microsoft Windows Print Spooler Point and Print allows installation of arbitrary queue-specific files
July 21, 2021Severity
High
Analysis Summary
CVE-2021-22919
Citrix ADC, Gateway and SD-WAN WANOP Edition models are vulnerable to a denial of service, caused by an uncontrolled resource consumption flaw. By reaching the management GUI, a remote attacker could exploit this vulnerability to cause a limited disk space consumption on the appliance.
CVE-2021-22920
Citrix ADC and Gateway could allow a remote attacker to hijack a user’s session when configured as a SAML SP. By persuading a victim to visit a specially-crafted Web site, an attacker could exploit this vulnerability using SAML authentication to gain access to another user’s session.
CVE-2021-22927
Citrix ADC and Gateway could allow a remote authenticated attacker to hijack a user’s session when configured as a SAML SP. By persuading a victim to visit a specially-crafted Web site, an attacker could exploit this vulnerability to gain access to another user’s session.
Impact
- Denial of Services
- Unauthorized Access
Affected Vendors
- Citrix Gateway
- Citrix ADC
- Citrix NetScaler Gateway
Affected Products
- Citrix Gateway 11.1
- Citrix Gateway 12.1
- Citrix Gateway 13.0
- Citrix ADC 11.1
- Citrix ADC 12.0
- Citrix ADC 13.1
- Citrix NetScaler Gateway 11.1
Remediation
Refer to for patch, upgrade or suggested workaround information. https://support.citrix.com/article/CTX319135