The security vulnerability is due to an exposed Microsoft Message Queuing (MSMQ) instance and the use of the insecure BinaryFormatter.
First seen on darkreading.com
Jump to article: www.darkreading.com/cloud-security/citrix-recording-manager-zero-day-bug-unauthenticated-rce
