Critical Memory Overread Vulnerability in Citrix NetScaler Exploited

**Executive summary:** Citrix NetScaler ADC and Gateway are affected by CVE-2026-3055, a critical SAML input-validation memory overread (CVSS 9.3) actively exploited in the wild with telemetry showing over 2,000 blocked daily attack attempts; organizations are urged to apply provided patches, inspect SAML and VPN/AAA configurations, and deploy IPS/signatures to mitigate credential exposure and unauthorized access.