์œ„ํ˜‘ ๊ฒฝ๋ณด : Citrixbleed (CVE-2023-4966)

๐Ÿ’Œ ๋ณด์•ˆ ์†Œ์‹
1

์œ„ํ˜‘ ๊ฒฝ๋ณด : Citrixbleed (CVE-2023-4966)

Cybereason Security Services ํŒ€์€ Citrixbleed๋ผ๋Š” ์ค‘์š”ํ•œ ์ทจ์•ฝ์ ์„ ์•…์šฉํ•˜๋Š” ์‚ฌ๊ฑด์„ ์กฐ์‚ฌํ•˜๊ณ  ์žˆ์œผ๋ฉฐ, ์‚ฌ์ด๋ฒ„ ์‹œ์ฆŒ์€ ์ด๋Ÿฌํ•œ ์œ„ํ˜‘์„ ์•Œ๋ฆฌ๊ณ  ๋ณดํ˜ธํ•˜๊ธฐ ์œ„ํ•œ ๊ฒฝ๋ณด๋ฅผ ๋ฐœํ–‰ํ•ฉ๋‹ˆ๋‹ค. ์ทจ์•ฝ์ ์„ ํ†ตํ•ด ๊ณต๊ฒฉ์ž๋Š” ๋ฉ”๋ชจ๋ฆฌ์— ๋“ค์–ด ์žˆ๋Š” ๋ฏผ๊ฐํ•œ ์ •๋ณด๋ฅผ ์•…์šฉํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค.

Cybereason Security Services ํŒ€์€ Citrixbleed๋ผ๋Š” ์ค‘์š”ํ•œ ์ทจ์•ฝ์ ์„ ์•…์šฉํ•˜๋Š” ์‚ฌ๊ฑด์„ ์กฐ์‚ฌํ•˜๊ณ  ์žˆ์œผ๋ฉฐ, ์‚ฌ์ด๋ฒ„ ์‹œ์ฆŒ์€ ์ด๋Ÿฌํ•œ ์œ„ํ˜‘์„ ๊ณ ๊ฐ์—๊ฒŒ ์•Œ๋ฆฌ๊ณ  ๋ณดํ˜ธํ•˜๊ธฐ ์œ„ํ•œ ๊ฒฝ๋ณด๋ฅผ ๋ฐœํ–‰ํ•ฉ๋‹ˆ๋‹ค. ๊ณต๊ฒฉ์ž๋Š” ์ทจ์•ฝ์ ์„ ํ†ตํ•ด ๋ฉ”๋ชจ๋ฆฌ์— ์žˆ๋Š” ๋ฏผ๊ฐํ•œ ์ •๋ณด๋ฅผ ์•…์šฉํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค.

THREAT ALERT: CITRIXBLEED (CVE-2023-4966)

The Cybereason Security Services team is investigating events that exploit important vulnerabilities called Citrixbleed, and the cyber season issues alarms to inform and protect these threats.The vulnerability allows the attacker to exploit the sensitive information in the memory.

The Cybereason Security Services team is investigating events that exploit important vulnerabilities called Citrixbleed, and the cyber season issues alarms to inform and protect these threats.Attackers can exploit sensitive information in memory through vulnerabilities.

https://www.cybereason.com/blog/threat-alert-citrixbleed-cve-2023-4966