logo

Citrix NetScaler Vulnerabilities Enable DoS and Memory Disclosure Attacks

ID: 24caff9b-6c2c-53f1-b2fe-7309f362e536

STIX ID: report--24caff9b-6c2c-53f1-b2fe-7309f362e536

Feed Name: ThreatCluster

Threat Score
70/100

Date Published: 2026-07-01

Date Updated: 2026-07-02

...
...

Citrix disclosed six high-severity vulnerabilities in NetScaler ADC and Gateway appliances — most notably CVE-2026-8451, which permits unauthenticated memory disclosure in SAML IDP configurations. A proof-of-concept for CVE-2026-8451 was published shortly after the advisory; other vulnerabilities can lead to DoS, arbitrary file access, and memory overreads. No confirmed exploitation has been reported to date, and affected setups include single sign-on and DNS proxy deployments; administrators are urged to apply patches.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.