Some of the products of sijie, a well-known software developer, have been found by security experts to have a serious vulnerability that allows attackers to remotely bypass authentication. Security experts say the vulnerability affects at least 80,000 businesses in 158 countries and territories around the world, so the potential security implications for the vulnerability are significant. The security breaches were the popular software application delivery controller (ADC) of Sj., and the Sjger Gateway system for single-point logins across applications.
Bypassing authentication and remote lying code:
Security experts who discovered the vulnerability say an attacker could bypass the authentication system and then directly access the internal network to steal any information.
If the application delivery controller is deployed to connect to other services such as ERP, an attacker can also use this vulnerability to access the ERP system of the enterprise directly.
The specific affected application depends on where the Sjor’s application delivery controller is deployed, and most enterprises may use the Sijie controller as a critical facility.
As a result, the affected applications may pose more security problems to the enterprise at the same time, and attackers can also use arbitrary code to pose more threats.
The vulnerability has now been assigned the number CVE-2019-19781, though more information is not immediately available until Sijie completes the fix for the vulnerability.
For the time being, only mitigation cannot be fixed:
After receiving feedback from security experts, Sjor confirmed the vulnerability, and in his announcement, He acknowledged that the vulnerability was extremely harmful.
But sijie has not yet released a new version of the firmware to fix this vulnerability, at this stage, enterprise administrators can only use mitigation programs to defend the vulnerability.
It is precisely because the vulnerability is more harmful, said in the announcement that all enterprises should deploy mitigation measures to prevent the vulnerability before the repair of hackers.
Security experts say that given the widespread deployment of Sijie software on the intranet, the vulnerability is high and therefore recommends that all administrators take steps to mitigate it.
The affected Sijie software includes the following:
Citrix Application Delivery Controller and Citrix Gateway v13.0 and all supported versions.
Citrix Application Delivery Controller and Citrix Gateway v12.1 and all supported versions.
Citrix Application Delivery Controller and Citrix Gateway v12.0 and all supported versions.
Citrix Application Delivery Controller and Citrix Gateway v11.1 and all supported versions.
Citrix Application Delivery Controller and Citrix Gateway v10.5 and all supported versions.