SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Thursday, June 26th, 2025: Another Netscaler Vuln; CentOS Web Panel Vuln; IP Based Certs
Jun 26, 2025
A recent security bulletin revealed a critical memory overflow vulnerability in Citrix's NetScaler, posing denial of service risks if unpatched. Meanwhile, CentOS Web Panel faces a serious remote code execution flaw that allows file uploads from users. The ongoing battle against vulnerabilities continues with Gogs' insufficient patch for file deletion exploits. On a progressive note, Let's Encrypt is preparing to issue IP address-based certificates, a game-changer for TLS certification that helps devices without hostnames.
AI Snips
Chapters
Transcript
Episode notes
Patch Citrix Netscaler Now
- Apply patches immediately for Citrix Netscaler vulnerability CVE-2025-6543 to prevent denial of service attacks.
- Pay attention if your Netscaler is configured as a gateway since it is actively exploited.
Update CentOS Web Panel
- Update CentOS Web Panel promptly to fix arbitrary file upload vulnerability leading to code execution.
- Notify server administrators to apply fixes if you use servers managed by WebPanel.
Patch Gogs Server Vulnerability
- Patch Gogs git server to prevent arbitrary file deletion that enables remote code execution.
- Understand that improper symlink handling led to this second vulnerability despite previous fixes.