Security experts say tens of thousands of organizations are at risk from the flaw, first disclosed last month. The directory traversal flaw exists in Citrixs Application Delivery Controller and Gateway. The flaw was discovered by Mikhail Klyuchnikov, a researcher at London-based vulnerability assessment firm Positive Technologies. Citrix says it’s hard at work to develop patches for affected software. The vendor has yet to issue any patches to fix the vulnerability, which could give attackers remote access to corporate networks.”]
Source: https://www.cuinfosecurity.com/severe-citrix-flaw-proof-of-concept-exploit-code-released-a-13600