Citrix NetScaler, Google Chrome zero-days added to CISA’s exploited vulnerabilities catalog

BleepingComputer reports that ongoing attacks abusing zero-day flaws impacting Citrix NetScaler ADC and Gateway appliances, as well as Google Chrome have prompted their inclusion in the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog. Federal agencies have been urged to remediate the NetScaler code injection issue, tracked as CVE-2023-6548, by Jan. 24, while mitigation of the NetScaler buffer overflow vulnerability, tracked as CVE-2023-6549, and the Chrome out-of-bounds memory access flaw, tracked as CVE-2024-0519, has been recommended by Feb. 7. Such updates to CISA's KEV catalog come a day after Citrix noted that the NetScaler flaws could be leveraged to facilitate either remote code execution and denial-of-service incidents. While organizations that could not immediately apply the issued updates were advised to disconnect their NetScaler instances from the internet, over 51,000 appliances were noted by a Shadowserver search to be accessible online, including 1,500 devices that have internet-exposed management interfaces.