Cyber Resilience

CVE-2024-12284

High

Published: 20 February 2025

Published
20 February 2025
Modified
25 July 2025
KEV Added
Patch
CVSS Score v4 8.8 CVSS:4.0/AV:A/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0424 89.0th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-12284 is a high-severity Improper Privilege Management (CWE-269) vulnerability in Citrix Netscaler Console. Its CVSS base score is 8.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked in the top 11.0% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 AC-2 (Account Management) and AC-3 (Access Enforcement).

Deeper analysis

CVE-2024-12284 is an authenticated privilege escalation vulnerability affecting NetScaler Console and NetScaler Agent. Published on 2025-02-20, it carries a CVSS v3.1 base score of 8.8 (High), with vector AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, and is associated with CWE-269 (Improper Privilege Management).

The vulnerability can be exploited by an authenticated attacker with low privileges over the network, requiring low complexity and no user interaction. Successful exploitation enables high-impact consequences, including unauthorized access to confidential data, modification of system integrity, and disruption of availability through escalated privileges.

Citrix has published a security bulletin addressing CVE-2024-12284 at https://support.citrix.com/s/article/CTX692579-netscaler-console-and-netscaler-agent-security-bulletin-for-cve202412284?language=en_US, which details mitigations and available patches for affected NetScaler Console and NetScaler Agent deployments.

EU & UK References

Vulnerability details

Authenticated privilege escalation in NetScaler Console and NetScaler Agent allows.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

Directly matches authenticated privilege escalation via improper privilege management (CWE-269).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2024-13835Shared CWE-269
CVE-2024-44250Shared CWE-269
CVE-2024-53706Shared CWE-269
CVE-2025-66374Shared CWE-269
CVE-2026-28995Shared CWE-269
CVE-2025-43199Shared CWE-269
CVE-2025-36640Shared CWE-269
CVE-2025-8899Shared CWE-269
CVE-2024-47770Shared CWE-269
CVE-2025-24254Shared CWE-269

Affected Assets

citrix
netscaler agent
13.0-58.30 · 13.1-4.43 — 13.1-56.18 · 14.1-4.42 — 14.1-38.53
citrix
netscaler console
13.1, 14.1

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly counters CWE-269 Improper Privilege Management by enforcing least privilege, preventing low-privileged authenticated users from escalating privileges in NetScaler Console and Agent.

prevent

Enforces approved access authorizations to block unauthorized privilege escalations attempted by authenticated low-privilege attackers over the network.

prevent

Manages accounts to ensure privileges are properly assigned, reviewed, and revoked, mitigating flaws in privilege handling within affected NetScaler components.

References