CVE-2024-8534: 
Citrix ADC VPX vulnerability analysis and mitigation

CVE-2024-8534 is a memory safety vulnerability affecting NetScaler ADC and Gateway systems. The vulnerability was discovered and disclosed in November 2024, impacting systems configured as a Gateway (VPN Vserver) with RDP Feature enabled, or systems configured with RDP Proxy Server Profile set to Gateway, or systems configured as an Auth Server (AAA Vserver) with RDP Feature enabled (NVD).

The vulnerability exists in the RDP Proxy feature of NetScaler, which allows clients to connect to an RDP server farm through Citrix NetScaler. The issue stems from improper handling of RDP connection requests, specifically related to memory safety in packet processing. The vulnerability has been assigned a CVSS 4.0 Base Score of 8.4 (HIGH) with the vector string CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:L. The vulnerability is classified under CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) (Assetnote).

When successfully exploited, this vulnerability can lead to memory corruption and denial of service conditions. An unauthenticated attacker can remotely force a system restart, causing service disruption. The impact is particularly severe for organizations relying on NetScaler for RDP proxy services (Assetnote).

The primary mitigation is to apply the latest security patches provided by Citrix. For systems where immediate patching is not possible, organizations should consider disabling the RDP Proxy feature if it's not essential to operations (NVD).