Dell Unity: NetScaler Unencrypted Web Management Interface plugin (User Correctable)

Summary: NetScaler Unencrypted Web Management Interface Plugin Plugin description: "The remote Citrix NetScaler web management interface does not use TLS or SSL to encrypt connections."

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

The customer reported a new vulnerability with the below plugin details: 

Plugin name 

NetScaler Unencrypted Web Management Interface Plugin 

Plugin: 29224

Plugin description : "The remote Citrix NetScaler web management interface does not use TLS or SSL to encrypt connections."

 

Cause

All webservers that redirect port 80 to 443 were reported as "NetScaler Unencrypted Web Management Interface." None of the web servers are Netscaler.

Scanners will often report about items that can improve the security and resiliency of the target machine, even though the item in question is not an actual vulnerability. 

Resolution

The vulnerability reported is a false positive. We do not have Citrix NetScaler built into Unity. 

If it does not have a CVE ID then it is not a vulnerability.

Scanners will often report about items that can improve the security and resiliency of the target machine, even though the item in question is not an actual vulnerability. For example, limiting the use of weak SSL ciphers is a common finding using these scanners, but weak SSL ciphers are not a vulnerability; it is a recommendation to harden the system.

Affected Products

Dell EMC Unity Family |Dell EMC Unity All Flash, Dell EMC Unity Family
Article Properties
Article Number: 000225081
Article Type: Solution
Last Modified: 16 Oct 2025
Version:  3
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.