Lucene search
K

1131 matches found

NVD
NVD
added 2026/06/30 1:17 p.m.11 views

CVE-2026-10817

Insufficient input validation leading to memory overread in NetScaler ADC and NetScaler Gateway if the TCP TimeStamp is enabled in TCP Profile and is associated with the virtual server of type LB, CS, VPN or the service configured on NetScaler...

7.5CVSS0.0041EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/30 1:3 p.m.7 views

EUVD-2026-40320

Denial of service via malformed HTTP/2 requests in NetScaler ADC and NetScaler Gateway if HTTP/2 is enabled in HTTP Profile and associated with the virtual server of type LB, CS, VPN or the service configured on NetScaler...

8.7CVSS5.8AI score0.0044EPSS
Exploits0References1
CVE
CVE
added 2026/06/30 1:3 p.m.52 views

CVE-2026-13474

The CVE-2026-13474 vulnerability affects NetScaler ADC and NetScaler Gateway when HTTP/2 is enabled in an HTTP Profile and tied to a virtual server (LB, CS, VPN) or its service. It allows denial of service via malformed HTTP/2 requests, impacting availability. CVSS v4.0 base score 8.7 (HIGH) with...

8.7CVSS5.8AI score0.0044EPSS
Exploits0References1Affected Software2
EUVD
EUVD
added 2026/06/30 12:58 p.m.7 views

EUVD-2026-40317

Insufficient input validation leading to memory overread in NetScaler ADC and NetScaler Gateway if the TCP TimeStamp is enabled in TCP Profile and is associated with the virtual server of type LB, CS, VPN or the service configured on NetScaler...

6.9CVSS5.8AI score0.0041EPSS
Exploits0References1
CVE
CVE
added 2026/06/30 12:58 p.m.25 views

CVE-2026-10817

CVE-2026-10817 is an “insufficient input validation leading to memory overread” affecting Citrix NetScaler ADC and NetScaler Gateway when TCP TimeStamp is enabled in the TCP profile and attached to a virtual server (LB, CS, VPN) or the service. Public sources consistently describe the root cause ...

7.5CVSS5.8AI score0.0041EPSS
Exploits0References1Affected Software2
ATTACKERKB
ATTACKERKB
added 2026/06/30 12:41 p.m.4 views

CVE-2026-8452

Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Service if the appliance is configured as a Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy or AAA virtual server...

8.8CVSS5.8AI score0.00486EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2026/06/30 12:41 p.m.40 views

CVE-2026-8452 Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service

Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Service if the appliance is configured as a Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy or AAA virtual server...

8.8CVSS0.00486EPSS
Exploits0References1
CVE
CVE
added 2026/06/30 12:41 p.m.47 views

CVE-2026-8452

CVE-2026-8452 is a memory overflow vulnerability in Citrix NetScaler ADC and NetScaler Gateway that can cause unpredictable behavior and a Denial of Service when the appliance is configured as a Gateway/AAA virtual server. The CVE entry is supported by multiple sources noting a memory overflow co...

9.8CVSS5.8AI score0.00486EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.11 views

PT-2026-53880

Name of the Vulnerable Software and Affected Versions NetScaler ADC affected versions not specified NetScaler Gateway affected versions not specified Description A memory overflow issue exists when the appliance is configured as an AAA virtual server or a Gateway including SSL VPN, ICA Proxy, CVP...

9.8CVSS6.2AI score0.00486EPSS
Exploits0References13
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:5 a.m.7 views

ipvs: clear the svc scheduler ptr early on edit

...

7.8CVSS5.8AI score0.00129EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/25 5:47 p.m.6 views

CVE-2026-53270

A flaw was found in the Linux kernel's IP Virtual Server IPVS component. During the ipvseditservice operation, the svc-scheduler pointer is cleared too late when unbinding an old scheduler. This improper handling allows packets to access previously freed scheduler data, leading to a use-after-fre...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/25 8:39 a.m.8 views

EUVD-2026-39221

In the Linux kernel, the following vulnerability has been resolved: ipvs: clear the svc scheduler ptr early on edit ipvseditservice while unbinding the old scheduler clears the svc-scheduler ptr after the scheduler module initiates RCU callbacks. This can cause packets to use the old scheduler at...

5.8AI score0.00129EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.4 views

PT-2026-52365

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the IP Virtual Server IPVS where the ip vs edit service function clears the svc-scheduler pointer after the scheduler module has already initiated Read-Copy-Update RCU...

7.8CVSS6AI score0.00129EPSS
Exploits0References22
RedhatCVE
RedhatCVE
added 2026/06/05 7:21 p.m.11 views

CVE-2026-41956

When a classification profile is configured on a UDP virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.5AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:20 p.m.11 views

CVE-2026-41218

When BIG-IP PEM iRules are configured on a virtual server iRules using commands starting with CLASSIFICATION::, CLASSIFY::, PEM::, PSC::, and the urlcatquery command, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End ...

8.7CVSS5.6AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:16 p.m.16 views

CVE-2026-42409

When an HTTP/2 profile and an iRule containing the HTTP::redirect or HTTP::respond command are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM process to terminate. Note: Software versions which have reached End of Technical Support EoTS are n...

8.7CVSS5.6AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:14 p.m.11 views

CVE-2026-40423

When a SIP profile is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.5AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:14 p.m.12 views

CVE-2026-40629

When SSL profiles are configured on a virtual server, undisclosed traffic can cause the virtual server to stop processing new client connections. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.5AI score0.00324EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:14 p.m.11 views

CVE-2026-40067

When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.5AI score0.00324EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:13 p.m.11 views

CVE-2026-40060

When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.5AI score0.00324EPSS
Exploits0References1
Rows per page
Query Builder