Authenticated Remote Code Execution in NetScaler ADC and NetScaler Gateway

Authenticated Remote Code Execution in NetScaler ADC and NetScaler Gateway

CVE-2023-6548 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) remote code execution on Management Interface.

Learn more about our Web Application Penetration Testing UK.