Citrix NetScaler Vulnerabilities Enable DoS and Memory Disclosure Attacks
ID: 24caff9b-6c2c-53f1-b2fe-7309f362e536
STIX ID: report--24caff9b-6c2c-53f1-b2fe-7309f362e536
Feed Name: ThreatCluster
Citrix disclosed six high-severity vulnerabilities in NetScaler ADC and Gateway appliances — most notably CVE-2026-8451, which permits unauthenticated memory disclosure in SAML IDP configurations. A proof-of-concept for CVE-2026-8451 was published shortly after the advisory; other vulnerabilities can lead to DoS, arbitrary file access, and memory overreads. No confirmed exploitation has been reported to date, and affected setups include single sign-on and DNS proxy deployments; administrators are urged to apply patches.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
