Citrix ADC – TheCyberThrone

CVE-2026-3055 – Citrix NetScaler Critical SAML IDP Memory Leak

Overview On March 23, 2026, Citrix published a security advisory for a critical vulnerability affecting NetScaler ADC and NetScaler Gateway. CVE-2026-3055 is classified as an out-of-bounds read with a CVSS…

PravinKarthik March 24, 2026

Citrix NetScaler ADC Critical Vulnerabilities

Citrix has warned its customers regarding two critical zero-day vulnerabilities, CVE-2023-6548 and CVE-2023-6549. These vulnerabilities pose a significant threat to the NetScaler management interface in Citrix’s NetScaler ADC and Gateway…

PravinKarthik January 17, 2024

Citrix NetScaler ADC Gateway Vulnerability – CVE-2023-3519 Exploited in Wild

Researchers have reported that threat actors are conducting a large-scale credential harvesting campaign exploiting the recent CVE-2023-3519 vulnerability in Citrix NetScaler Gateways. At the end of July, Citrix warned customers…

PravinKarthik October 11, 2023

CISA Warns on Citrix ADC Bug Exploited in Wild

The U.S.CISA warned of cyber attacks against Citrix NetScaler Application Delivery Controller (ADC) and Gateway devices exploiting recently discovered zero-day CVE-2023-3519. The CISA states that threat actors targeted a NetScaler…

PravinKarthik July 22, 2023

Citrix NetScaler ADC Zeroday Flaw

Citrix has urged its customers to patch NetScaler ADC and Gateway products after discovering a critical-severity zero-day vulnerability. The flaw tracked as CVE-2023-3519, with a CVSS score of 9.8, is…

PravinKarthik July 20, 2023

Citrix releases patches for flaws exploited by APT5

Citrix has released a patch for a critical flaw affecting Citrix ADC and Citrix Gateway, and it is aware of attacks against the vulnerability in the wild. The vulnerability, tracked…

PravinKarthik December 15, 2022

Citrix patches Critical vulnerabilities in Gateway and ADC

Citrix is urging customers to install security updates to address a critical authentication bypass issue, in Citrix ADC and Citrix Gateway. The company addressed the following three vulnerabilities: CVE-ID  Description  CWE  Affected Products Pre-conditions CVE-2022-27510 Unauthorized…

PravinKarthik November 9, 2022