A critical bug in Citrix Application Delivery Controller (ADC) and Citrix Gateway could allow attackers to gain remote access to a company s local network and carry out arbitrary code-execution. About one in five of the 80,000 companies affected by the bug are still at risk from a trivial attack on their internal operations. Other attacks are also possible, including denial-of-service (DoS) campaigns, data theft, lateral infiltration to other parts of the corporate infrastructure, and phishing attacks.
Source: https://threatpost.com/critical-citrix-rce-flaw-corporate-lans/152677/