Security alert: Citrix NetScaler ADC and NetScaler Gateway vulnerabilities allow unauthorized access

Citrix disclosed two critical NetScaler ADC/Gateway vulnerabilities (CVE-2025-5777 and CVE-2025-6543) that can allow unauthorized access, session hijacking, and deployment of webshells; CVE-2025-6543 has been observed exploited in the wild. The vendor and responders recommend immediate installation of provided updates and use of IOC scanning and investigation guidance to detect possible compromise.