Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Netscaler_gateway
(Citrix)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 22 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-06-17 | CVE-2025-5777 | Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server | Netscaler_application_delivery_controller, Netscaler_gateway | 7.5 | ||
| 2024-07-10 | CVE-2024-5491 | Denial of Service in NetScaler ADC and NetScaler Gateway in NetScaler | Netscaler_application_delivery_controller, Netscaler_gateway | 7.5 | ||
| 2024-07-10 | CVE-2024-5492 | Open redirect vulnerability allows a remote unauthenticated attacker to redirect users to arbitrary websites in NetScaler ADC and NetScaler Gateway | Netscaler_application_delivery_controller, Netscaler_gateway | 6.1 | ||
| 2024-11-12 | CVE-2024-8534 | Memory safety vulnerability leading to memory corruption and Denial of Service in NetScaler ADC and Gateway if the appliance must be configured as a Gateway (VPN Vserver) with RDP Feature enabled OR the appliance must be configured as a Gateway (VPN Vserver) and RDP Proxy Server Profile is created and set to Gateway (VPN Vserver) OR the appliance must be configured as a Auth Server (AAA Vserver) with RDP Feature enabled | Netscaler_application_delivery_controller, Netscaler_gateway | 8.1 | ||
| 2024-11-12 | CVE-2024-8535 | Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway if the appliance must be configured as a Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) with KCDAccount configuration for Kerberos SSO to access backend resources OR the appliance must be configured as an Auth Server (AAA Vserver) with KCDAccount configuration for Kerberos SSO to access backend resources | Netscaler_application_delivery_controller, Netscaler_gateway | 8.1 | ||
| 2025-06-25 | CVE-2025-6543 | Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server | Netscaler_application_delivery_controller, Netscaler_gateway | 9.8 | ||
| 2023-10-10 | CVE-2023-4966 | Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA ?virtual?server. | Netscaler_application_delivery_controller, Netscaler_gateway | 7.5 | ||
| 2023-07-19 | CVE-2023-3519 | Unauthenticated remote code execution | Netscaler_application_delivery_controller, Netscaler_gateway | 9.8 | ||
| 2024-01-17 | CVE-2023-6548 | Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) remote code execution on Management Interface. | Netscaler_application_delivery_controller, Netscaler_gateway | 8.8 | ||
| 2024-01-17 | CVE-2023-6549 | Improper Restriction of Operations within the Bounds of a Memory Buffer in NetScaler ADC and NetScaler Gateway allows Unauthenticated Denial of Service and Out-Of-Bounds Memory Read | Netscaler_application_delivery_controller, Netscaler_gateway | 7.5 |