The U.S. CISA has added a critical vulnerability, CVE-2025-5777, affecting Citrix NetScaler ADC and Gateway to its KEV list, which has been exploited in real-world attacks. This flaw can lead to memory overread, token theft, and unauthorized access, posing significant risks to enterprise networks. #CitrixBleed2 #CVE20255777
Keypoints
- CISA has officially added CVE-2025-5777 to its KEV catalog after confirmed exploitation.
- The vulnerability allows attackers to bypass authentication and leak sensitive memory data.
- Exploitation is linked to malicious IP addresses in multiple countries, targeting major nations.
- Organizations are advised to immediately upgrade to patched Citrix versions and review logs for suspicious activity.
- Another similar flaw, CVE-2025-6543, is also actively exploited, amplifying the threat landscape.
Read More: https://thehackernews.com/2025/07/cisa-adds-citrix-netscaler-cve-2025.html