Security researchers revealed exploit code for a critical vulnerability in Citrix NetScaler, dubbed CitrixBleed 2, which is actively exploited in the wild. Users are urged to update their systems promptly to mitigate risks from multiple vulnerabilities, including CVE-2025-5777 and a zero-day exploit. #CitrixNetScaler #CitrixBleed2
Keypoints
- A critical vulnerability in Citrix NetScaler was patched in June but remains actively exploited by attackers.
- Security firms have analyzed exploit techniques that leak memory and retrieve user session tokens via HTTP requests.
- Over 50,000 NetScaler instances could be vulnerable to this flaw, with some still unpatched as of July.
- Citrix has not confirmed active exploitation but recommends immediate updates to affected systems.
- Besides CVE-2025-5777, the update also patches a zero-day vulnerability, CVE-2025-6543, with a high severity score.
Read More: https://www.securityweek.com/exploits-technical-details-released-for-citrixbleed2-vulnerability/