CVE-2025-6543

🗓️ 25 Jun 2025 12:49:57Reported by CitrixType

cve🔗 web.nvd.nist.gov📰️ 35 Media mentions👁 189 Views

Memory overflow vulnerability in NetScaler ADC and Gateway causes Denial of Service and control flow issues

Reporter	Title	Published	Views	Family All 37
GithubExploit	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Citrix Netscaler_Application_Delivery_Controller	3 Jul 202520:02	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller	30 Jun 202511:02	–	githubexploit
GithubExploit	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Citrix Netscaler_Application_Delivery_Controller	26 Jun 202515:05	–	githubexploit
ATTACKERKB	CVE-2025-6543	25 Jun 202500:00	–	attackerkb
BDU FSTEC	The vulnerability of the Citrix ADC application delivery controller (formerly Citrix NetScaler Application Delivery Controller) and the Citrix Gateway virtual environment access control system (formerly Citrix NetScaler Gateway) relates to an operation that goes beyond the buffer in memory, allowing a malicious actor to cause service failures.	28 Jul 202500:00	–	bdu_fstec
Circl	CVE-2025-6543	25 Jun 202512:51	–	circl
CISA KEV Catalog	Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability	30 Jun 202500:00	–	cisa_kev
CISA	CISA Adds One Known Exploited Vulnerability to Catalog	30 Jun 202512:00	–	cisa
CNNVD	Citrix NetScaler ADC和Citrix NetScaler Gateway 缓冲区错误漏洞	25 Jun 202500:00	–	cnnvd
Citrix	NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2025-6543	25 Jun 202512:12	–	citrix

NVD

Node

citrix netscaler_application_delivery_controllerRange13.1–13.1-37.236fips

citrix netscaler_application_delivery_controllerRange13.1–13.1-37.236ndcpp

citrix netscaler_application_delivery_controllerRange13.1–13.1-59.19-

citrix netscaler_application_delivery_controllerRange14.1–14.1-47.46-

Node

citrix netscaler_gatewayRange13.1–13.1-59.19

citrix netscaler_gatewayRange14.1–14.1-47.46

[
  {
    "defaultStatus": "unaffected",
    "product": "ADC",
    "vendor": "NetScaler",
    "versions": [
      {
        "lessThan": "47.46",
        "status": "affected",
        "version": "14.1",
        "versionType": "patch"
      },
      {
        "lessThan": "59.19",
        "status": "affected",
        "version": "13.1",
        "versionType": "patch"
      },
      {
        "lessThan": "37.236",
        "status": "affected",
        "version": "13.1 FIPS and NDcPP",
        "versionType": "patch"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Gateway",
    "vendor": "NetScaler",
    "versions": [
      {
        "lessThan": "47.46",
        "status": "affected",
        "version": "14.1",
        "versionType": "patch"
      },
      {
        "lessThan": "59.19",
        "status": "affected",
        "version": "13.1",
        "versionType": "patch"
      },
      {
        "lessThan": "37.236",
        "status": "affected",
        "version": "13.1 FIPS and NDcPP",
        "versionType": "patch"
      }
    ]
  }
]

Source	Link
support	www.support.citrix.com/support-home/kbsearch/article
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

17 Jun 2026 10:02Current

7.4High risk

Vulners AI Score7.4

CVSS 3.19.8

CVSS 49.2

EPSS0.09756

SSVC