Active exploitation of two Citrix zero-day vulnerabilities
Tags
attack-pattern: Data Cloud Services - T1021.007 Server - T1583.004 Server - T1584.004 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID e407bb8d-0713-41e2-bf58-f628645afa9b
Fingerprint b7547c518d52f202
Analysis status DONE
Considered CTI value 2
Text language
Published Jan. 17, 2024, 6:11 p.m.
Added to db Oct. 16, 2024, 2:55 a.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Active exploitation of two Citrix zero-day vulnerabilities
Title Active exploitation of two Citrix zero-day vulnerabilities
Detected Hints/Tags/Attributes 33/1/6
Source URLs
Redirection Url
Details Source https://fieldeffect.com/blog/active-exploitation-citrix-zero-days
URL Provider
Details Provider Source level domain
Details fieldeffect.com fieldeffect.com
Attributes
Details Type #Events CTI Value
Details CVE 4 
cve-2023-6548
Details CVE 6 
cve-2023-6549
Details CVE 116 
cve-2023-4966
Details CVE 161 
cve-2019-19781
Details Domain 14 
shadowserver.org
Details Threat Actor Identifier - APT 665 
APT29