5425 matches found
CVE-2025-66391
In Citrix Cloud through 2025-11-10, an account with read-only access can trigger the beginning of a workflow for write operations, e.g., the system will send a one-time password to an attacker-controlled email address when the attacker attempts to reset the password of a user account...
CVE-2025-66391
In Citrix Cloud through 2025-11-10, an account with read-only access can trigger the beginning of a workflow for write operations, e.g., the system will send a one-time password to an attacker-controlled email address when the attacker attempts to reset the password of a user account...
Citrix Bleed - Leaking Session Tokens
Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway VPN virtual server, ICA Proxy, CVPN, RDP Proxy or AAA ?virtual?server. id: CVE-2023-4966 info: name: Citrix Bleed - Leaking Session Tokens author: DhiyaneshDK severity: high description: | Sensiti...
Citrix ADC and Gateway - Directory Traversal
Citrix Application Delivery Controller ADC and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0 are susceptible to directory traversal vulnerabilities. id: CVE-2019-19781 info: name: Citrix ADC and Gateway - Directory Traversal author: organiccrap,geeknik severity: critical description: Citrix Applicatio...
Metasploit Wrap Up 05/29/2026
More Linux LPEs Hark the age of the Linux LPE has arrived. This week’s release follows up on recent work bringing new Linux LPEs to Metasploit users. Copy Fail seemed to have kicked off a trend of similar bugs and hot on its heels is Dirty Frag. Dirty Frag is actually two vulnerabilities in a...
Citrix ADC (NetScaler) CVE-2026-3055 Scanner
This module scans for a vulnerability that allows a remote, unauthenticated attacker to leak memory from a target Citrix ADC server configured as a SAML IdP. The leaked memory is then scanned for session cookies which can be hijacked if found. Module Options msf use...
CVE-2026-23556
creationtimestamp| type| source ---|---|--- 2026-04-29 01:49:24+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-citrix-xenserver 2026-04-29 12:45:35+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mkn4wpcktx2h 2026-04-29 12:50:07+00:00| seen|...
Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller
CVE-2026-3055 - Security Vulnerability Severity: N/A CV...
Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller
CVE-2026-3055 NetScaler SAML IdP check Python helper to probe...
Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller
🔍 CVE-2026-3055 Scanner - NetScaler Memory Overread Detection...
Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller
🔓 CVE-2026-3055 - Citrix NetScaler Memory Overread Exploit !...
Citrix NetScaler SAML IDP - Memory Overread
NetScaler ADC and NetScaler Gateway contain an insufficient input validation vulnerability when configured as a SAML IDP, leading to memory overread, letting attackers potentially access sensitive memory, exploit requires configuration as SAML IDP id: CVE-2026-3055 info: name: Citrix NetScaler SA...
⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More
Some weeks are loud. This one was quieter but not in a good way. Long-running operations are finally hitting courtrooms, old attack methods are showing up in new places, and research that stopped being theoretical right around the time defenders stopped paying attention. There's a bit of everythi...
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-3055link is external Citrix NetScaler Out-of-Bounds Read Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and...
Citrix NetScaler Out-of-Bounds Read Vulnerability
Citrix NetScaler ADC formerly Citrix ADC, NetScaler Gateway formerly Citrix Gateway and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability when configured as a SAML IDP leading to memory overread...
Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug
A recently disclosed critical security flaw impacting Citrix NetScaler ADC and NetScaler Gateway is witnessing active reconnaissance activity, according to Defused Cyber and watchTowr. The vulnerability, CVE-2026-3055 CVSS score: 9.3, refers to a case of insufficient input validation leading to...
Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks
Citrix has released security updates to address two vulnerabilities in NetScaler ADC and NetScaler Gateway, including a critical flaw that could be exploited to leak sensitive data from the application. The vulnerabilities are listed below - CVE-2026-3055 CVSS score: 9.3 - Insufficient input...
Citrix NetScaler ADC和Citrix NetScaler Gateway 安全漏洞
Citrix NetScaler ADC and Citrix NetScaler Gateway are both products of the American company Citrix. Citrix NetScaler ADC is an application delivery and security platform. Citrix NetScaler Gateway is a solution for secure remote access. Both Citrix NetScaler ADC and Citrix NetScaler Gateway have...
Citrix NetScaler ADC和Citrix NetScaler Gateway 安全漏洞
Citrix NetScaler ADC and Citrix NetScaler Gateway are both products of the American company Citrix. Citrix NetScaler ADC is an application delivery and security platform. Citrix NetScaler Gateway is a solution for secure remote access. Both Citrix NetScaler ADC and Citrix NetScaler Gateway have...
PT-2026-27122
Name of the Vulnerable Software and Affected Versions NetScaler ADC affected versions not specified NetScaler Gateway affected versions not specified NetScaler Gateway version 14.1-66.54 Description A race condition occurs in NetScaler ADC and NetScaler Gateway when the appliance is configured as...