Unrated severityCISA KEVNVD Advisory· Published Oct 10, 2023· Updated Oct 21, 2025
Unauthenticated sensitive information disclosure
CVE-2023-4966
Description
Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4(expand)+ 1 more
- (no CPE)
- (no CPE)range: 14.1
(expand)+ 1 more
- (no CPE)
- (no CPE)range: 14.1
Patches
Vulnerability mechanics
References
2News mentions
4- INC Ransomware Uses Rust-Based Windows and Linux/ESXi Encryptors in New AttacksCyber Security News · Jun 19, 2026
- The Gentlemen Ransomware Group Uses Fortinet Exploits, AI, and Custom C2 FrameworksCyber Security News · Jun 3, 2026
- Inside the customer environment: Where threat actors, vulnerabilities, and exposed assets intersectTenable Blog · May 27, 2026
- Ransomware Tactics, Techniques, and Procedures in a Shifting Threat LandscapeMandiant Threat Intelligence · Mar 16, 2026