This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Protection for Citrix vulnerability CVE-2019-19781

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Protection for Citrix vulnerability CVE-2019-19781

RREALICA
L2 Linker

‎12-24-2019 02:03 PM

Hi,

 

Is there any official word when PA will get protection for CVE-2019-19781 - Vulnerability in Citrix Application Delivery Controller and Citrix Gateway?

https://support.citrix.com/article/CTX267027

 

Thanks.

8 people had this problem.
6 REPLIES 6

Rajesh12
L3 Networker

‎12-25-2019 08:39 PM

@RREALICA 

 

PA have not released signature for this vulnerability yet. But you can monitor it at threat vault.

 

https://threatvault.paloaltonetworks.com/

0 Likes Likes

zachzoom
L0 Member
In response to Rajesh12

‎12-27-2019 11:31 AM

I don't see anything in threat vault for that CVE...is that because there is no signature yet and it will show up when there is one?

0 Likes Likes

Rajesh12
L3 Networker
In response to zachzoom

‎12-29-2019 08:04 PM

@zachzoom 

 

Yes, it will show up in Threat Vault when once PA defined signatures for it.

0 Likes Likes

RREALICA
L2 Linker
In response to Rajesh12

‎12-30-2019 09:06 AM

fyi in case anyone is interested: SANS Webcasst: What you Need To Know About The Critical Citrix Gateway (Netscaler) Vulnerability CVE-2019-19781

 

https://www.sans.org/webcasts/about-critical-citrix-gateway-netscaler-vulnerability-cve-2019-19781-1...

 

 

0 Likes Likes

Anon1
L4 Transporter
In response to RREALICA

‎01-08-2020 03:33 AM

Signature is released in content update 8224.

0 Likes Likes

twan.hermans
L0 Member

‎01-14-2020 01:05 AM

Hi,

 

As there is an signature sinds a couple of days, i indeed see some hits, and reset actions.  But i wonder how the palo will detect this vulnerability, because we don't have ssl decryption enabled, and our citrix is only available on https.

 

Does anyone have some theorie ?

 

Best regards,

Twan Hermans

  • 9871 Views
  • 6 replies
  • 6 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks