Shodan
Vulnerabilities
Vulnerable Software
Citrix:  >> Netscaler Gateway  Security Vulnerabilities
CVE-2025-6543
Known exploited
Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server
CVSS Score
9.8
EPSS Score
0.035
Published
2025-06-25
CVE-2025-5777
Known exploited
Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server
CVSS Score
7.5
EPSS Score
0.202
Published
2025-06-17
CVE-2023-6549
Known exploited
Improper Restriction of Operations within the Bounds of a Memory Buffer in NetScaler ADC and NetScaler Gateway allows Unauthenticated Denial of Service and Out-Of-Bounds Memory Read
CVSS Score
8.2
EPSS Score
0.112
Published
2024-01-17
CVE-2023-6548
Known exploited
Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) remote code execution on Management Interface.
CVSS Score
5.5
EPSS Score
0.234
Published
2024-01-17
CVE-2023-4967
Denial of Service in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA Virtual Server
CVSS Score
8.2
EPSS Score
0.004
Published
2023-10-27
CVE-2023-4966
Known exploited
Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA  virtual server.
CVSS Score
9.4
EPSS Score
0.943
Published
2023-10-10
CVE-2023-3466
Reflected Cross-Site Scripting (XSS)
CVSS Score
8.3
EPSS Score
0.011
Published
2023-07-19
CVE-2023-3467
Privilege Escalation to root administrator (nsroot)
CVSS Score
8.0
EPSS Score
0.004
Published
2023-07-19
CVE-2023-3519
Known exploited
Unauthenticated remote code execution
CVSS Score
9.8
EPSS Score
0.912
Published
2023-07-19
CVE-2021-22927
A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an attacker to hijack a session.
CVSS Score
8.1
EPSS Score
0.003
Published
2021-08-05


Products
Pricing
Contact Us

Shodan ® - All rights reserved