This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[+] buxuqua (@Buxu) | |
[Suggested description] | |
By an SSRF attack, an attacker can perform Privilege escalation attack to the nsroot user. And by the nsroot user, an attacker can execute remote commands with root privileges of OS. | |
------------------------------------------ | |
[VulnerabilityType Other] | |
Privilege Escalation to RCE | |
------------------------------------------ | |
[Vendor of Product] | |
Citrix NetScaler |