The three vulnerabilities have been addressed with the release of ADC and Gateway versions 13.1-33.47, 13.0-88.12, and 12.1-65.21, and in ADC 12.1-FIPS 12.1-55.289 and ADC 12.1-NDcPP 12.1-55.289. Citrix on Tuesday announced patches for three vulnerabilities impacting its Gateway and ADC products, including one critical-severity flaw. In addition to resolving these three vulnerabilities, the aforementioned ADC and Gateway releases include security enhancements to protect against HTTP request smuggling attacks.