Netscaler Gateway Security Vulnerabilities and Issues — Netscaler Gateway CVE List

Lucene search

CitrixNetscaler Gateway

18 matches found

CVE•added 2023/07/19 6:15 p.m.•1569 views

CVE-2023-3519

Unauthenticated remote code execution

9.8CVSS10AI score0.91204EPSS

CVE•added 2023/10/10 2:15 p.m.•926 views

CVE-2023-4966

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.

9.4CVSS8.6AI score0.94348EPSS

CVE•added 2024/01/17 9:15 p.m.•472 views

CVE-2023-6549

Improper Restriction of Operations within the Bounds of a Memory Buffer in NetScaler ADC and NetScaler Gateway allows Unauthenticated Denial of Service and Out-Of-Bounds Memory Read

8.2CVSS7.7AI score0.12278EPSS

CVE•added 2024/01/17 8:15 p.m.•285 views

CVE-2023-6548

Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) remote code execution on Management Interface.

8.8CVSS8.8AI score0.23433EPSS

CVE•added 2023/10/27 7:15 p.m.•220 views

CVE-2023-4967

Denial of Service in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA Virtual Server

8.2CVSS7.7AI score0.00439EPSS

CVE•added 2025/06/17 1:15 p.m.•173 views

CVE-2025-5777

Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

9.3CVSS9.6AI score0.20202EPSS

CVE•added 2023/07/19 7:15 p.m.•133 views

CVE-2023-3467

Privilege Escalation to root administrator (nsroot)

8CVSS8.7AI score0.00429EPSS

CVE•added 2023/07/19 7:15 p.m.•121 views

CVE-2023-3466

Reflected Cross-Site Scripting (XSS)

8.3CVSS7.2AI score0.01054EPSS

CVE•added 2021/08/05 9:15 p.m.•95 views

CVE-2021-22919

A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to the limited available disk ...

7.5CVSS7.5AI score0.00698EPSS

CVE•added 2018/03/01 5:29 p.m.•77 views

CVE-2018-5314

Command injection vulnerability in Citrix NetScaler ADC and NetScaler Gateway 11.0 before build 70.16, 11.1 before build 55.13, and 12.0 before build 53.13; and the NetScaler Load Balancing instance distributed with NetScaler SD-WAN/CloudBridge 4000, 4100, 5000 and 5100 WAN Optimization Edition 9.3...

7.5CVSS7.8AI score0.03479EPSS

CVE•added 2025/06/25 1:15 p.m.•74 views

CVE-2025-6543

Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

9.8CVSS7.4AI score0.03542EPSS

CVE•added 2021/08/05 9:15 p.m.•69 views

CVE-2021-22927

A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an attacker to hijack a session.

8.1CVSS7.8AI score0.003EPSS

CVE•added 2017/08/02 7:29 p.m.•55 views

CVE-2015-3642

The TLS and DTLS processing functionality in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway devices with firmware 9.x before 9.3 Build 68.5, 10.0 through Build 78.6, 10.1 before Build 130.13, 10.1.e before Build 130.1302.e, 10.5 before Build 55.8, and 10.5.e before Bui...

5.9CVSS4.6AI score0.94196EPSS

CVE•added 2020/09/18 9:15 p.m.•52 views

CVE-2020-8246

Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-...

7.5CVSS7.5AI score0.00506EPSS

CVE•added 2020/09/18 9:15 p.m.•50 views

CVE-2020-8245

Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11...

6.1CVSS6.9AI score0.0039EPSS

CVE•added 2021/06/16 2:15 p.m.•47 views

CVE-2020-8299

Citrix ADC and Citrix/NetScaler Gateway 13.0 before 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS before 12.1-55.238, and Citrix SD-WAN WANOP Edition before 11.4.0, 11.3.2, 11.3.1a, 11.2.3a, 11.1.2c, 10.2.9a suffers from uncontrolled resource consumption by way of a network-based denial-...

6.5CVSS6.3AI score0.00246EPSS

CVE•added 2021/06/16 2:15 p.m.•47 views

CVE-2020-8300

Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC or Citrix Gateway must ...

6.5CVSS6.5AI score0.12609EPSS

CVE•added 2020/09/18 9:15 p.m.•45 views

CVE-2020-8247

8.8CVSS8.8AI score0.00355EPSS