Citrix products are vulnerable to a serious bug that could be used to scan the internet for weaknesses, according to experts. The bug affects the NetScaler ADC Application Delivery Controller and Citrix Gateway. NIST gave the bug a 9.8 (Critical) CVSS 3.0 score. An attacker could use the bug to execute arbitrary code without even needing an account. Citrix has provided some mitigation steps to help protect systems for the time being, but theres no patch for this vulnerability yet.”]

