Lucene search
K

5425 matches found

NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2025-66391

In Citrix Cloud through 2025-11-10, an account with read-only access can trigger the beginning of a workflow for write operations, e.g., the system will send a one-time password to an attacker-controlled email address when the attacker attempts to reset the password of a user account...

8.8CVSS0.00383EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/17 12:0 a.m.24 views

CVE-2025-66391

In Citrix Cloud through 2025-11-10, an account with read-only access can trigger the beginning of a workflow for write operations, e.g., the system will send a one-time password to an attacker-controlled email address when the attacker attempts to reset the password of a user account...

0.00383EPSS
Exploits0References2
Nuclei
Nuclei
added 2026/06/16 7:13 a.m.181 views

Citrix Bleed - Leaking Session Tokens

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway VPN virtual server, ICA Proxy, CVPN, RDP Proxy or AAA ?virtual?server. id: CVE-2023-4966 info: name: Citrix Bleed - Leaking Session Tokens author: DhiyaneshDK severity: high description: | Sensiti...

9.4CVSS7.5AI score0.99999EPSS
Exploits15References5
Nuclei
Nuclei
added 2026/06/16 7:13 a.m.70 views

Citrix ADC and Gateway - Directory Traversal

Citrix Application Delivery Controller ADC and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0 are susceptible to directory traversal vulnerabilities. id: CVE-2019-19781 info: name: Citrix ADC and Gateway - Directory Traversal author: organiccrap,geeknik severity: critical description: Citrix Applicatio...

9.8CVSS8.8AI score0.99999EPSS
Exploits48References5
Rapid7 Blog
Rapid7 Blog
added 2026/05/29 7:34 p.m.17 views

Metasploit Wrap Up 05/29/2026

More Linux LPEs Hark the age of the Linux LPE has arrived. This week’s release follows up on recent work bringing new Linux LPEs to Metasploit users. Copy Fail seemed to have kicked off a trend of similar bugs and hot on its heels is Dirty Frag. Dirty Frag is actually two vulnerabilities in a...

9.8CVSS8AI score0.93235EPSS
Exploits55
Metasploit
Metasploit
added 2026/05/20 6:58 p.m.233 views

Citrix ADC (NetScaler) CVE-2026-3055 Scanner

This module scans for a vulnerability that allows a remote, unauthenticated attacker to leak memory from a target Citrix ADC server configured as a SAML IdP. The leaked memory is then scanned for session cookies which can be hijacked if found. Module Options msf use...

9.8CVSS8.7AI score0.83996EPSS
Exploits7
Circl
Circl
added 2026/04/29 1:49 a.m.6 views

CVE-2026-23556

creationtimestamp| type| source ---|---|--- 2026-04-29 01:49:24+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-citrix-xenserver 2026-04-29 12:45:35+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mkn4wpcktx2h 2026-04-29 12:50:07+00:00| seen|...

4.9AI score
Exploits0References3
GithubExploit
GithubExploit
added 2026/04/19 6:22 a.m.105 views

Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller

CVE-2026-3055 - Security Vulnerability Severity: N/A CV...

9.8CVSS5.8AI score0.83996EPSS
Exploits7
GithubExploit
GithubExploit
added 2026/04/01 7:53 p.m.129 views

Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller

CVE-2026-3055 NetScaler SAML IdP check Python helper to probe...

9.8CVSS7.2AI score0.83996EPSS
Exploits7
GithubExploit
GithubExploit
added 2026/03/31 4:23 p.m.122 views

Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller

🔍 CVE-2026-3055 Scanner - NetScaler Memory Overread Detection...

9.8CVSS5.8AI score0.83996EPSS
Exploits7
GithubExploit
GithubExploit
added 2026/03/31 4:7 p.m.134 views

Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller

🔓 CVE-2026-3055 - Citrix NetScaler Memory Overread Exploit !...

9.8CVSS7.3AI score0.83996EPSS
Exploits7
Nuclei
Nuclei
added 2026/03/30 4:19 p.m.10 views

Citrix NetScaler SAML IDP - Memory Overread

NetScaler ADC and NetScaler Gateway contain an insufficient input validation vulnerability when configured as a SAML IDP, leading to memory overread, letting attackers potentially access sensitive memory, exploit requires configuration as SAML IDP id: CVE-2026-3055 info: name: Citrix NetScaler SA...

9.8CVSS7.4AI score0.83996EPSS
Exploits7References3
The Hacker News
The Hacker News
added 2026/03/30 1:56 p.m.16 views

⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More

Some weeks are loud. This one was quieter but not in a good way. Long-running operations are finally hitting courtrooms, old attack methods are showing up in new places, and research that stopped being theoretical right around the time defenders stopped paying attention. There's a bit of everythi...

10CVSS7.4AI score0.99997EPSS
Exploits124
CISA
CISA
added 2026/03/30 12:0 p.m.12 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-3055link is external Citrix NetScaler Out-of-Bounds Read Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and...

9.8CVSS7.1AI score0.83996EPSS
In wildExploits7References6
CISA KEV Catalog
CISA KEV Catalog
added 2026/03/30 12:0 a.m.12 views

Citrix NetScaler Out-of-Bounds Read Vulnerability

Citrix NetScaler ADC formerly Citrix ADC, NetScaler Gateway formerly Citrix Gateway and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability when configured as a SAML IDP leading to memory overread...

9.8CVSS7.4AI score0.83996EPSS
In wildExploits7
The Hacker News
The Hacker News
added 2026/03/28 9:11 a.m.8 views

Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug

A recently disclosed critical security flaw impacting Citrix NetScaler ADC and NetScaler Gateway is witnessing active reconnaissance activity, according to Defused Cyber and watchTowr. The vulnerability, CVE-2026-3055 CVSS score: 9.3, refers to a case of insufficient input validation leading to...

9.8CVSS7.3AI score0.99999EPSS
Exploits41
The Hacker News
The Hacker News
added 2026/03/24 5:59 a.m.7 views

Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks

Citrix has released security updates to address two vulnerabilities in NetScaler ADC and NetScaler Gateway, including a critical flaw that could be exploited to leak sensitive data from the application. The vulnerabilities are listed below - CVE-2026-3055 CVSS score: 9.3 - Insufficient input...

9.8CVSS5.9AI score0.99999EPSS
Exploits41
CNNVD
CNNVD
added 2026/03/23 12:0 a.m.5 views

Citrix NetScaler ADC和Citrix NetScaler Gateway 安全漏洞

Citrix NetScaler ADC and Citrix NetScaler Gateway are both products of the American company Citrix. Citrix NetScaler ADC is an application delivery and security platform. Citrix NetScaler Gateway is a solution for secure remote access. Both Citrix NetScaler ADC and Citrix NetScaler Gateway have...

7.7CVSS6.1AI score0.03618EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/23 12:0 a.m.10 views

Citrix NetScaler ADC和Citrix NetScaler Gateway 安全漏洞

Citrix NetScaler ADC and Citrix NetScaler Gateway are both products of the American company Citrix. Citrix NetScaler ADC is an application delivery and security platform. Citrix NetScaler Gateway is a solution for secure remote access. Both Citrix NetScaler ADC and Citrix NetScaler Gateway have...

9.8CVSS7.5AI score0.83996EPSS
Exploits7References1
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.6 views

PT-2026-27122

Name of the Vulnerable Software and Affected Versions NetScaler ADC affected versions not specified NetScaler Gateway affected versions not specified NetScaler Gateway version 14.1-66.54 Description A race condition occurs in NetScaler ADC and NetScaler Gateway when the appliance is configured as...

9CVSS5.8AI score0.03618EPSS
Exploits0References43
Rows per page
Query Builder