logo

CitrixBleed-ing Again? NetScaler Vulnerability Under Attack

ID: ee74e15f-ff3c-56db-9856-71e9570aacd0

STIX ID: report--ee74e15f-ff3c-56db-9856-71e9570aacd0

Feed Name: Dark Reading

Threat Score
78/100

Date Published: 2026-07-06

Date Updated: 2026-07-07

Author: Rob Wright

...
...

Citrix disclosed CVE-2026-8451, a high-severity (CVSS 8.8) memory overread in NetScaler ADC/Gateway SAML IDP that can leak sensitive memory; a PoC was published and vendors (e.g., Lupovis) observed exploitation and coordinated scanning (notably from 146.70.139.154), prompting urgent patching or disabling of SAML IDP and review of SAML logs.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.