Netscaler Gateway Security Vulnerabilities and Issues — Netscaler Gateway CVE List

Lucene search

CitrixNetscaler Gateway

25 matches found

CVE•added 2024/07/10 7:15 p.m.•7383 views

CVE-2024-5491

Denial of Service in NetScaler ADC and NetScaler Gateway in NetScaler

7.5CVSS6.6AI score0.00448EPSS

CVE•added 2024/07/10 7:15 p.m.•7382 views

CVE-2024-5492

Open redirect vulnerability allows a remote unauthenticated attacker to redirect users to arbitrary websites in NetScaler ADC and NetScaler Gateway

6.1CVSS7.1AI score0.00636EPSS

CVE•added 2024/11/12 7:15 p.m.•3671 views

CVE-2024-8534

Memory safety vulnerability leading to memory corruption and Denial of Service in NetScaler ADC and Gateway if the appliance must be configured as a Gateway (VPN Vserver) with RDP Feature enabled OR the appliance must be configured as a Gateway (VPN Vserver) and RDP Proxy Server Profile is created ...

8.4CVSS6.9AI score0.00571EPSS

CVE•added 2023/07/19 6:15 p.m.•1696 views

CVE-2023-3519

Unauthenticated remote code execution

9.8CVSS10AI score0.89735EPSS

In wildWeb

CVE•added 2023/10/10 2:15 p.m.•1034 views

CVE-2023-4966

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.

9.4CVSS8.6AI score0.94344EPSS

In wild

CVE•added 2024/01/17 9:15 p.m.•506 views

CVE-2023-6549

Improper Restriction of Operations within the Bounds of a Memory Buffer in NetScaler ADC and NetScaler Gateway allows Unauthenticated Denial of Service and Out-Of-Bounds Memory Read

8.2CVSS7.7AI score0.16339EPSS

In wild

CVE•added 2025/08/26 1:15 p.m.•324 views

CVE-2025-7775

Memory overflow vulnerability leading to Remote Code Execution and/or Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server (OR) NetScaler ADC and NetScaler Gateway 13.1, 14.1, 13.1-FIP...

9.8CVSS7.8AI score0.06053EPSS

In wild

CVE•added 2024/01/17 8:15 p.m.•318 views

CVE-2023-6548

Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) remote code execution on Management Interface.

8.8CVSS8.8AI score0.25144EPSS

In wild

CVE•added 2025/06/17 1:15 p.m.•262 views

CVE-2025-5777

Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

9.3CVSS9.6AI score0.47395EPSS

In wild

CVE•added 2023/10/27 7:15 p.m.•221 views

CVE-2023-4967

Denial of Service in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA Virtual Server

8.2CVSS7.7AI score0.00451EPSS

CVE•added 2025/06/25 1:15 p.m.•153 views

CVE-2025-6543

Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

9.8CVSS7.4AI score0.01588EPSS

In wild

CVE•added 2023/07/19 7:15 p.m.•135 views

CVE-2023-3467

Privilege Escalation to root administrator (nsroot)

8CVSS8.7AI score0.00429EPSS

CVE•added 2023/07/19 7:15 p.m.•123 views

CVE-2023-3466

Reflected Cross-Site Scripting (XSS)

8.3CVSS7.2AI score0.0094EPSS

CVE•added 2021/08/05 9:15 p.m.•97 views

CVE-2021-22919

A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to the limited available disk ...

7.5CVSS7.5AI score0.00698EPSS

CVE•added 2018/03/01 5:29 p.m.•78 views

CVE-2018-5314

Command injection vulnerability in Citrix NetScaler ADC and NetScaler Gateway 11.0 before build 70.16, 11.1 before build 55.13, and 12.0 before build 53.13; and the NetScaler Load Balancing instance distributed with NetScaler SD-WAN/CloudBridge 4000, 4100, 5000 and 5100 WAN Optimization Edition 9.3...

7.5CVSS7.8AI score0.03308EPSS

CVE•added 2021/08/05 9:15 p.m.•70 views

CVE-2021-22927

A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an attacker to hijack a session.

8.1CVSS7.8AI score0.003EPSS

CVE•added 2025/06/17 1:15 p.m.•61 views

CVE-2025-5349

Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway

8.8CVSS6.6AI score0.0006EPSS

CVE•added 2024/11/12 7:15 p.m.•58 views

CVE-2024-8535

Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway if the appliance must be configured as a Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) with KCDAccount configuration for Kerberos SSO to access backend resources OR the appliance must be configured as ...

8.1CVSS6.5AI score0.00318EPSS

CVE•added 2017/08/02 7:29 p.m.•57 views

CVE-2015-3642

The TLS and DTLS processing functionality in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway devices with firmware 9.x before 9.3 Build 68.5, 10.0 through Build 78.6, 10.1 before Build 130.13, 10.1.e before Build 130.1302.e, 10.5 before Build 55.8, and 10.5.e before Bui...

5.9CVSS4.6AI score0.93853EPSS

CVE•added 2020/09/18 9:15 p.m.•53 views

CVE-2020-8246

Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-...

7.5CVSS7.5AI score0.00506EPSS

CVE•added 2020/09/18 9:15 p.m.•52 views

CVE-2020-8245

Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11...

6.1CVSS6.9AI score0.0039EPSS

CVE•added 2021/06/16 2:15 p.m.•49 views

CVE-2020-8299

Citrix ADC and Citrix/NetScaler Gateway 13.0 before 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS before 12.1-55.238, and Citrix SD-WAN WANOP Edition before 11.4.0, 11.3.2, 11.3.1a, 11.2.3a, 11.1.2c, 10.2.9a suffers from uncontrolled resource consumption by way of a network-based denial-...

6.5CVSS6.3AI score0.00246EPSS

CVE•added 2021/06/16 2:15 p.m.•49 views

CVE-2020-8300

Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC or Citrix Gateway must ...

6.5CVSS6.5AI score0.12609EPSS

CVE•added 2020/09/18 9:15 p.m.•46 views

CVE-2020-8247

8.8CVSS8.8AI score0.00355EPSS

CVE•added 2025/08/26 1:15 p.m.•43 views

CVE-2025-7776

Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) with PCoIP Profile bounded to it

9.8CVSS7.4AI score0.00073EPSS