There is some disagreement over whether the remote code execution (RCE) security flaws allow for unauthenticated exploitation or not. Citrix says no, but researchers say the company is downplaying a good old unauthenticated RCE.
First seen on darkreading.com
Jump to article: www.darkreading.com/cloud-security/citrix-patches-zero-day-recording-manager-bugs
