Citrix security advisory

Number: AV21-657
Date: 22 December 2021

On 11 December 2021 Citrix published a Security Advisory to address critical vulnerabilities which may affect multiple products using the Apache Log4j logging utility.

Exploitation of these vulnerabilities could lead to remote code execution.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates when available.

Citrix Security Advisory for CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105 (CTX335705)
https://support.citrix.com/article/CTX335705

Active Exploitation of Apache Log4j Vulnerability VulnerabilityA flaw or weakness in the design or implementation of an information system or its environment that could be exploited to adversely affect an organization's assets or operations. (AL21-019)
https://cyber.gc.ca/en/alerts/active-exploitation-apache-log4j-vulnerability

Date modified: