VYPR

ADC

by Netscaler

CVEs (31)

  • CVE-2026-4368HigMar 23, 2026
    risk 0.50cvss epss 0.04

    Race Condition in NetScaler ADC and NetScaler Gateway when appliance is configured as Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server leading to User Session Mixup

  • CVE-2023-3519KEVJul 19, 2023
    risk 0.28cvss epss 0.99

    Unauthenticated remote code execution

  • CVE-2025-5777KEVJun 17, 2025
    risk 0.26cvss epss 1.00

    Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

  • CVE-2026-3055KEVMar 23, 2026
    risk 0.22cvss epss 0.84

    Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overread

  • CVE-2020-8193KEVJul 10, 2020
    risk 0.20cvss epss 0.88

    Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows unauthenticated access to certain URL endpoints.

  • CVE-2020-8195KEVJul 10, 2020
    risk 0.18cvss epss 0.33

    Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.

  • CVE-2020-8196KEVJul 10, 2020
    risk 0.17cvss epss 0.26

    Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.

  • CVE-2025-7775KEVAug 26, 2025
    risk 0.13cvss epss 0.19

    Memory overflow vulnerability leading to Remote Code Execution and/or Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server (OR) NetScaler ADC and NetScaler…

  • CVE-2025-6543KEVJun 25, 2025
    risk 0.12cvss epss 0.10

    Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

  • CVE-2020-8191Jul 10, 2020
    risk 0.07cvss epss 0.23

    Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows reflected Cross Site Scripting (XSS).

  • CVE-2020-8194Jul 10, 2020
    risk 0.06cvss epss 0.11

    Reflected code injection in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows the modification of a file download.

  • CVE-2023-24487Jul 10, 2023
    risk 0.03cvss epss 0.01

    Arbitrary file read in Citrix ADC and Citrix Gateway 

  • CVE-2020-8300Jun 16, 2021
    risk 0.01cvss epss 0.03

    Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC or…

  • CVE-2025-7776Aug 26, 2025
    risk 0.00cvss epss 0.07

    Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) with PCoIP Profile bounded to it

  • CVE-2025-5349Jun 17, 2025
    risk 0.00cvss epss 0.04

    Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway

  • CVE-2024-8535Nov 12, 2024
    risk 0.00cvss epss 0.00

    Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway if the appliance must be configured as a Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) with KCDAccount configuration for Kerberos SSO to access backend resources OR the…

  • CVE-2024-8534Nov 12, 2024
    risk 0.00cvss epss 0.01

    Memory safety vulnerability leading to memory corruption and Denial of Service in NetScaler ADC and Gateway if the appliance must be configured as a Gateway (VPN Vserver) with RDP Feature enabled OR the appliance must be configured as a Gateway (VPN Vserver) and RDP Proxy…

  • CVE-2024-5492Jul 10, 2024
    risk 0.00cvss epss 0.01

    Open redirect vulnerability allows a remote unauthenticated attacker to redirect users to arbitrary websites in NetScaler ADC and NetScaler Gateway

  • CVE-2024-5491Jul 10, 2024
    risk 0.00cvss epss 0.01

    Denial of Service in NetScaler ADC and NetScaler Gateway in NetScaler

  • CVE-2022-37719Jan 23, 2023
    risk 0.00cvss epss 0.00

    A Cross-Site Request Forgery (CSRF) in the management portal of JetNexus/EdgeNexus ADC 4.2.8 allows attackers to escalate privileges and execute arbitrary code via unspecified vectors.

Page 1 of 2