As part of our continued commitment to keeping Citrix products and customers secure, we have continually moved to help keep application delivery infrastructures safe and ahead of potential vulnerabilities. As part of this commitment, we’re always releasing new builds for Citrix Application Delivery Controller (ADC) to help protect against known vulnerabilities and keep a consistent security posture, regardless of what your unique deployment situation looks like.

We issue security bulletins for Common Vulnerabilities and Exposures, or CVEs, to help our customers identify the potential impact on their own Citrix ADC and Gateway infrastructures and plan accordingly. While useful, the identification and remediation process remained a largely manual chore — until now.

With the new Security Advisory on Citrix ADM service, customers can easily identify Citrix ADC instances with known vulnerabilities in their infrastructure, learn more about the issues at hand, and quickly take action to remediate concerns. Identifying and remediating vulnerabilities in your application delivery infrastructure is easier than ever.

Citrix ADM service’s Security Advisory runs a scan on all managed ADC instances to identify the impact of CVEs on your ADC infrastructure.  It tells you the vulnerable ADCs for specific CVEs and the CVEs impacting specific ADCs. It also advises you on how to remediate or mitigate the vulnerability while helping you to proceed with any necessary software version upgrade to remediate the vulnerability.

The Current CVE tab shows the impact of each CVE on ADC instances. (Click image to view larger.)
The Current CVE tab shows the impact on each ADC instance by the CVEs. (Click image to view larger.)
You can ‘proceed to upgrade workflow’ to execute the remediation. (Click image to view larger.)

Security Advisory also shows previous scan reports under “Scan Logs” and has a “CVE Repository,” shown below, to act as a one-stop solution for you to get all the related details on each CVE.

Click image to view larger.

If you are an existing Citrix ADM service customer, you can find more details on the feature here.

If you are a Citrix ADC customer who is not yet onboarded to Citrix ADM service, we are happy to announce that you can get emails with insights on these advisories with our new ADM Service Connect initiative. It will also enable you to onboard to Citrix ADM service using a low-touch, automated route.

You’ll need to have your Citrix ADC instances internet-reachable, with Call Home and/or ADM Service Connect enabled. You’ll also need a Citrix Cloud account. Learn more here.