Critical 9.4 vulnerability lets attackers steal the token of recently connected users, allowing the attacker to gain access to whatever resources the user has permissions to access in Citrix.
Article Link: Citrix NetScaler bug protection: Close all active sessions, says Mandiant | SC Media