Netscaler Gateway@* Security Vulnerabilities and Issues — Netscaler Gateway@* CVE List

Lucene search

CitrixNetscaler Gateway*

21 matches found

CVE•added 2024/07/10 7:15 p.m.•7381 views

CVE-2024-5491

Denial of Service in NetScaler ADC and NetScaler Gateway in NetScaler

7.5CVSS6.6AI score0.00313EPSS

CVE•added 2024/07/10 7:15 p.m.•7381 views

CVE-2024-5492

Open redirect vulnerability allows a remote unauthenticated attacker to redirect users to arbitrary websites in NetScaler ADC and NetScaler Gateway

6.1CVSS7.1AI score0.0012EPSS

CVE•added 2024/11/12 7:15 p.m.•3670 views

CVE-2024-8534

Memory safety vulnerability leading to memory corruption and Denial of Service in NetScaler ADC and Gateway if the appliance must be configured as a Gateway (VPN Vserver) with RDP Feature enabled OR the appliance must be configured as a Gateway (VPN Vserver) and RDP Proxy Server Profile is created ...

8.4CVSS6.9AI score0.00444EPSS

CVE•added 2023/07/19 6:15 p.m.•1668 views

CVE-2023-3519

Unauthenticated remote code execution

9.8CVSS10AI score0.89996EPSS

CVE•added 2023/10/10 2:15 p.m.•1017 views

CVE-2023-4966

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.

9.4CVSS8.6AI score0.94348EPSS

CVE•added 2024/01/17 9:15 p.m.•495 views

CVE-2023-6549

Improper Restriction of Operations within the Bounds of a Memory Buffer in NetScaler ADC and NetScaler Gateway allows Unauthenticated Denial of Service and Out-Of-Bounds Memory Read

8.2CVSS7.7AI score0.10073EPSS

CVE•added 2024/01/17 8:15 p.m.•307 views

CVE-2023-6548

Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) remote code execution on Management Interface.

8.8CVSS8.8AI score0.23433EPSS

CVE•added 2023/10/27 7:15 p.m.•220 views

CVE-2023-4967

Denial of Service in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA Virtual Server

8.2CVSS7.7AI score0.00439EPSS

CVE•added 2025/06/17 1:15 p.m.•206 views

CVE-2025-5777

Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

9.3CVSS9.6AI score0.60815EPSS

CVE•added 2023/07/19 7:15 p.m.•133 views

CVE-2023-3467

Privilege Escalation to root administrator (nsroot)

8CVSS8.7AI score0.00429EPSS

CVE•added 2023/07/19 7:15 p.m.•121 views

CVE-2023-3466

Reflected Cross-Site Scripting (XSS)

8.3CVSS7.2AI score0.0094EPSS

CVE•added 2025/06/25 1:15 p.m.•108 views

CVE-2025-6543

Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

9.8CVSS7.4AI score0.04011EPSS

CVE•added 2021/08/05 9:15 p.m.•95 views

CVE-2021-22919

A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to the limited available disk ...

7.5CVSS7.5AI score0.00698EPSS

CVE•added 2021/08/05 9:15 p.m.•69 views

CVE-2021-22927

A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an attacker to hijack a session.

8.1CVSS7.8AI score0.003EPSS

CVE•added 2024/11/12 7:15 p.m.•57 views

CVE-2024-8535

Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway if the appliance must be configured as a Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) with KCDAccount configuration for Kerberos SSO to access backend resources OR the appliance must be configured as ...

8.1CVSS6.5AI score0.00249EPSS

CVE•added 2025/06/17 1:15 p.m.•55 views

CVE-2025-5349

Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway

8.8CVSS6.6AI score0.00054EPSS

CVE•added 2020/09/18 9:15 p.m.•52 views

CVE-2020-8246

Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-...

7.5CVSS7.5AI score0.00506EPSS

CVE•added 2020/09/18 9:15 p.m.•50 views

CVE-2020-8245

Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11...

6.1CVSS6.9AI score0.0039EPSS

CVE•added 2021/06/16 2:15 p.m.•47 views

CVE-2020-8299

Citrix ADC and Citrix/NetScaler Gateway 13.0 before 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS before 12.1-55.238, and Citrix SD-WAN WANOP Edition before 11.4.0, 11.3.2, 11.3.1a, 11.2.3a, 11.1.2c, 10.2.9a suffers from uncontrolled resource consumption by way of a network-based denial-...

6.5CVSS6.3AI score0.00246EPSS

CVE•added 2021/06/16 2:15 p.m.•47 views

CVE-2020-8300

Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC or Citrix Gateway must ...

6.5CVSS6.5AI score0.12609EPSS

CVE•added 2020/09/18 9:15 p.m.•45 views

CVE-2020-8247

8.8CVSS8.8AI score0.00355EPSS