Citrix has released patches for three critical vulnerabilities in its NetScaler ADC and Gateway products, including a zero-day memory overflow exploited in the wild. Immediate patching is recommended to prevent potential remote code execution and denial-of-service attacks. #CVE-2025-7775 #NetScalerVulnerabilities
Keypoints
- Citrix addressed three security flaws in NetScaler ADC and Gateway products.
- The most severe vulnerability, CVE-2025-7775, is actively exploited and can cause RCE and DoS.
- Specific configurations, such as IPv6-enabled setups, are affected by these vulnerabilities.
- Federally mandated agencies were instructed to patch within two days due to active exploitation.
- Older versions of NetScaler are no longer supported, urging users to upgrade to supported releases.
Read More: https://www.securityweek.com/citrix-patches-exploited-netscaler-zero-day/