Statement on CVE 2023-4966 Citrix Unauthenticated Sensitive Information Disclosure#
November 27, 2023
Information#
Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.
Risk#
Not Applicable
Response#
Melissa Data Corporation (“Melissa”) was not impacted by the Citrix Unauthenticated Sensitive Information Disclosure vulnerability. Any Melissa commercial web services or productswere not impacted by this vulnerability.
Melissa will continue to follow all guidance provided for this vulnerability as necessary to prevent any future risks.