Citrix ADC Vulnerability Creates Unwanted Christmas Present - BrightCloud Technologies
Happy Users | Better Business

Sales 0370 770 9722
Support 0370 770 4548

Citrix ADC Vulnerability Creates Unwanted Christmas Present

January 16th, 2020 by Mark Curry

**UPDATE 24 JAN 2020 – Citrix have now released permanent fixes to address the CVE-2019-19781 vulnerability for Citrix Application Delivery Controller (ADC) and Citrix Gateway.**

Citrix ADC Vulnerability Blog ImageBefore Christmas a vulnerability was identified in Citrix Application Delivery Controller (ADC), formerly known as NetScaler ADC, as well as in Citrix Gateway, formerly known as NetScaler Gateway. This CVE-2019-19781 vulnerability, if exploited, could allow an unauthenticated party to perform arbitrary code execution. This issue impacts all ADC and ADC Gateway versions 10.5 through 13.0.

A Positive Technologies report from December estimates that the vulnerability could potentially expose the networks of over 80,000 firms across 158 countries.

Luckily for BrightCloud customers our support team and consultants worked late on Christmas Eve to finish off applying the mitigations for all our customers with an ADC managed service to make sure they were protected over the Christmas break. Please see this Citrix Knowledge Center article for instructions on how to apply the mitigation.

Recent reports estimate that around 26,000 ADCs have still not had the mitigation applied – so don’t delay.

It is worth noting that network scans to detect the presence of this vulnerability also detect deployments behind a firewall, so not all devices found are exploitable.

For assistance with applying the mitigation or for any other Citrix ADC support including managed services, please contact us to book a free consultation with one of our Citrix consultants.


Want to find out more? CALL US: 0370 770 9722   or    EMAIL US


BrightCloud have proved to be exceptional hosts for the Trust’s system. BrightCloud are fully conversant with the software, which enables their suppo…



BrightCloud part of the Open Reality Group