The vulnerability of the Citrix ADC application delivery controller (formerly Citrix NetScaler Application Delivery Controller) and the Citrix Gateway virtual environment access control system (formerly Citrix NetScaler Gateway) relates to the occurrence of operations outside the buffer in memory. This vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.

🗓️ 30 Jun 2025 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Citrix ADC and Gateway buffer overrun allows attacker to compromise confidentiality, integrity, and accessibility of protected data.

Reporter	Title	Published	Views	Family All 57
GithubExploit	Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller	5 Jul 202523:56	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller	20 Aug 202510:51	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller	10 Jul 202507:15	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller	11 Aug 202515:47	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller	15 Jul 202517:49	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller	8 Jul 202514:12	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller	23 Jul 202512:05	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller	16 Jul 202515:12	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller	30 Jun 202511:02	–	githubexploit
GithubExploit	Exploit for Injection in Nikhil-Bhalerao Open_Source_Clinic_Management_System	9 Jul 202507:30	–	githubexploit

Vulners

Node

citrix_systems netscaler_application_delivery_controllerRange13.1–13.1-58.32

OR

citrix_systems netscaler_application_delivery_controllerRange13.1-fips–13.1-37.235-fips

OR

citrix_systems netscaler_application_delivery_controllerRange13.1-ndcpp–13.1-37.235-ndcpp

OR

citrix_systems netscaler_application_delivery_controllerRange12.1-fips–12.1-55.328-fips

OR

citrix_systems netscaler_gatewayRange13.1–13.1-58.32

OR

citrix_systems netscaler_application_delivery_controllerRange14.1–14.1-43.56

OR

citrix_systems netscaler_gatewayRange14.1–14.1-43.56

Source	Link
support	www.support.citrix.com/support-home/kbsearch/article
t	www.t.me/c/1627154862/198917
telsy	www.telsy.com/attacchi-rivolti-a-target-italiani-notificati-nuovi-data-breach-vulnerabilita-sfruttate-itw/
web	www.web.nvd.nist.gov/view/vuln/detail

08 Oct 2025 00:00Current

8High risk

Vulners AI Score8

CVSS 210

CVSS 310

EPSS0.64972

Citrix application delivery Citrix gateway buffer overrun memory vulnerability protected data