Vulnerabilities

CVE-2023-4966 (CitrixBleed) is a critical vulnerability in Citrix NetScaler ADC and Gateway that enabled session token leakage and account takeover. This record provides verified analysis, exploitation context, and defensive mitigation guidance.

CVE-2021-44228 (Log4Shell) is a critical remote code execution vulnerability in Apache Log4j 2 that enabled unauthenticated attackers to execute arbitrary code via JNDI lookups. This record provides verified technical analysis, exploitation context, impact assessment, and defensive guidance.