The most at risk nations are the United States (with 38% of exposed networks), the United Kingdom, Germany, the Netherlands, and Australia. Positive Technologies has identified the weakness (CVE-2019-19781), classified as’ serious’ although it has not yet been given a CVSS severity ranking. If the bug is abused, no connection to accounts is needed by the perpetrator, so any external entity may pursue it. It allows unauthorized access from Citrix servers to reported software and other internal network services. On December 7, 2019, Citrix warned in its own security bulletin that if exploited, the vulnerability might allow an unauthenticated attacker to execute arbitrary code. Citrix issued the mitigation steps “within just a couple of weeks after the vulnerability was discovered. From our experience, we know that in many cases it can take months.” It states that the weakness has persisted since 2014 and is therefore as critical as protecting against current or future threats to identify any possible ongoing abuse and network breach.
