This vulnerability has been addressed in the following versions of Citrix NetScaler ADC and NetScaler Gateway:
• Citrix NetScaler ADC and NetScaler Gateway version 12.0 Build 57.24 and later
• Citrix NetScaler ADC and NetScaler Gateway version 11.1 Build 58.13 and later
• Citrix NetScaler ADC and NetScaler Gateway version 11.0 Build 71.24 and later
• Citrix NetScaler ADC and NetScaler Gateway version 10.5 Build 68.7 and later
Citrix NetScaler ADC and NetScaler Gateway version 10.1 are not planned to be updated as part of remediating this issue. Customers on version 10.1 should plan to move to a later version to receive the latest security updates.
These new versions can be downloaded from the following locations:
https://www.citrix.com/downloads/netscaler-adc.html
https://www.citrix.com/downloads/netscaler-gateway.html
Citrix strongly recommends that customers using affected versions of NetScaler ADC and NetScaler Gateway to upgrade to a version of the appliance firmware that contains the fixes for this issue as soon as possible.