This page lists publicly disclosed CVE vulnerabilities affecting citrix netscaler_gateway (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-8655 | Multiple Memory overflow vulnerabilities in NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Service if NetScaler ADC is configured as an LB of type Oracle OR NetScaler ADC is configured as a DNS Proxy OR NetScaler ADC is configured as a DNS recursive resolver deployment | 50a63c94-1ea7-4568-8c11-eb79e7c5a2b5 | 8.8 | 0.46% | 2026-06-30 | 2026-07-01 |
| CVE-2026-8452 | Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Service if the appliance is configured as a Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server | 50a63c94-1ea7-4568-8c11-eb79e7c5a2b5 | 8.8 | 0.49% | 2026-06-30 | 2026-07-01 |
| CVE-2026-8451 | Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler ADC or NetScaler Gateway is configured as a SAML IDP | 50a63c94-1ea7-4568-8c11-eb79e7c5a2b5 | 8.8 | 0.53% | 2026-06-30 | 2026-07-01 |
| CVE-2026-13474 | Denial of service via malformed HTTP/2 requests in NetScaler ADC and NetScaler Gateway if HTTP/2 is enabled in HTTP Profile and associated with the virtual server (of type LB, CS, VPN) or the service configured on NetScaler | 50a63c94-1ea7-4568-8c11-eb79e7c5a2b5 | 8.7 | 0.40% | 2026-06-30 | 2026-07-02 |
| CVE-2026-10817 | Insufficient input validation leading to memory overread in NetScaler ADC and NetScaler Gateway if the TCP TimeStamp is enabled in TCP Profile and is associated with the virtual server (of type LB, CS, VPN) or the service configured on NetScaler | 50a63c94-1ea7-4568-8c11-eb79e7c5a2b5 | 6.9 | 0.40% | 2026-06-30 | 2026-07-02 |
| CVE-2026-10816 | Arbitrary File Read (Unauthenticated) in NetScaler ADC and NetScaler Gateway if the access to NSIP, Cluster Management IP or SNIP with management access is enabled | 50a63c94-1ea7-4568-8c11-eb79e7c5a2b5 | 7.1 | 0.41% | 2026-06-30 | 2026-07-02 |
| CVE-2026-3055 KEV | Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overread | 50a63c94-1ea7-4568-8c11-eb79e7c5a2b5 | 9.3 | 84.00% | 2026-03-23 | 2026-06-17 |
| CVE-2025-7776 | Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) with PCoIP Profile bounded to it | [email protected] | 8.8 | 6.66% | 2025-08-26 | 2026-06-17 |
| CVE-2025-7775 KEV | Memory overflow vulnerability leading to Remote Code Execution and/or Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server (OR) NetScaler ADC and NetScaler Gateway 13.1, 14.1, 13.1-FIPS and NDcPP: LB virtual servers of type (HTTP, SSL or HTTP_QUIC) bound with IPv6 services or servicegroups bound with IPv6 servers (OR) NetScaler ADC and NetScaler Gateway 13.1, 14.1, 13.1-FIPS an | [email protected] | 9.2 | 18.97% | 2025-08-26 | 2026-06-17 |
| CVE-2025-6543 KEV | Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server | [email protected] | 9.2 | 9.76% | 2025-06-25 | 2026-06-17 |
| CVE-2025-5777 KEV | Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server | [email protected] | 9.3 | 99.90% | 2025-06-17 | 2026-06-17 |
| CVE-2025-5349 | Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway | [email protected] | 8.7 | 3.65% | 2025-06-17 | 2026-06-17 |
| CVE-2024-8535 | Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway if the appliance must be configured as a Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) with KCDAccount configuration for Kerberos SSO to access backend resources OR the appliance must be configured as an Auth Server (AAA Vserver) with KCDAccount configuration for Kerberos SSO to access backend resources | [email protected] | 5.8 | 0.42% | 2024-11-12 | 2026-06-17 |
| CVE-2024-8534 | Memory safety vulnerability leading to memory corruption and Denial of Service in NetScaler ADC and Gateway if the appliance must be configured as a Gateway (VPN Vserver) with RDP Feature enabled OR the appliance must be configured as a Gateway (VPN Vserver) and RDP Proxy Server Profile is created and set to Gateway (VPN Vserver) OR the appliance must be configured as a Auth Server (AAA Vserver) with RDP Feature enabled | [email protected] | 8.4 | 0.56% | 2024-11-12 | 2026-06-17 |
| CVE-2024-5492 | Open redirect vulnerability allows a remote unauthenticated attacker to redirect users to arbitrary websites in NetScaler ADC and NetScaler Gateway | [email protected] | 5.1 | 0.57% | 2024-07-10 | 2026-06-17 |
| CVE-2024-5491 | Denial of Service in NetScaler ADC and NetScaler Gateway in NetScaler | [email protected] | 7.2 | 0.76% | 2024-07-10 | 2026-06-17 |
| CVE-2023-6549 KEV | Improper Restriction of Operations within the Bounds of a Memory Buffer in NetScaler ADC and NetScaler Gateway allows Unauthenticated Denial of Service and Out-Of-Bounds Memory Read | [email protected] | 8.2 | 57.63% | 2024-01-17 | 2026-06-17 |
| CVE-2023-6548 KEV | Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) remote code execution on Management Interface. | [email protected] | 5.5 | 3.19% | 2024-01-17 | 2026-06-17 |
| CVE-2023-4967 | Denial of Service in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA Virtual Server | [email protected] | 8.2 | 0.88% | 2023-10-27 | 2026-06-17 |
| CVE-2023-4966 KEV | Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server. | [email protected] | 9.4 | 100.00% | 2023-10-10 | 2026-06-17 |