VYPR

Vendor CVEs

Netscaler

All CVEs

22 total · sorted by risk
  • CVE-2019-12989CriKEVJul 16, 2019
    risk 0.86cvss 9.8epss 0.94

    Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 allow SQL Injection.

  • CVE-2025-5777HigKEVJun 17, 2025
    risk 0.78cvss 7.5epss 1.00

    Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

  • CVE-2019-12991HigKEVJul 16, 2019
    risk 0.78cvss 8.8epss 0.74

    Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 5 of 6).

  • CVE-2025-6543CriKEVJun 25, 2025
    risk 0.76cvss 9.8epss 0.10

    Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

  • CVE-2019-10883CriJun 3, 2019
    risk 0.69cvss 9.8epss 0.65

    Citrix SD-WAN Center 10.2.x before 10.2.1 and NetScaler SD-WAN Center 10.0.x before 10.0.7 allow Command Injection.

  • CVE-2019-12990CriJul 16, 2019
    risk 0.67cvss 9.8epss 0.39

    Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 allow Directory Traversal.

  • CVE-2019-12988CriJul 16, 2019
    risk 0.67cvss 9.8epss 0.43

    Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 4 of 6).

  • CVE-2019-12987CriJul 16, 2019
    risk 0.67cvss 9.8epss 0.44

    Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 3 of 6).

  • CVE-2019-12986CriJul 16, 2019
    risk 0.67cvss 9.8epss 0.40

    Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 2 of 6).

  • CVE-2019-12985CriJul 16, 2019
    risk 0.67cvss 9.8epss 0.43

    Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 1 of 6).

  • CVE-2019-12992HigJul 16, 2019
    risk 0.61cvss 8.8epss 0.49

    Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 6 of 6).

  • CVE-2024-6235HigJul 10, 2024
    risk 0.59cvss 8.8epss 0.21

    Sensitive information disclosure in NetScaler Console

  • CVE-2024-12284HigFeb 20, 2025
    risk 0.58cvss 8.8epss 0.12

    Authenticated privilege escalation in NetScaler Console and NetScaler Agent allows.

  • CVE-2025-5349HigJun 17, 2025
    risk 0.57cvss 8.8epss 0.04

    Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway

  • CVE-2026-4368HigMar 23, 2026
    risk 0.50cvss epss 0.04

    Race Condition in NetScaler ADC and NetScaler Gateway when appliance is configured as Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server leading to User Session Mixup

  • CVE-2025-4365HigJun 17, 2025
    risk 0.49cvss 7.5epss 0.07

    Arbitrary file read in NetScaler Console and NetScaler SDX (SVM)

  • CVE-2024-6236HigJul 10, 2024
    risk 0.49cvss 7.5epss 0.01

    Denial of Service in NetScaler Console (formerly NetScaler ADM), NetScaler Agent, and NetScaler SDX

  • CVE-2019-11345MedMar 10, 2020
    risk 0.40cvss 6.1epss 0.01

    Citrix SD-WAN Center 10.2.x before 10.2.1 and NetScaler SD-WAN Center 10.0.x before 10.0.7 allow XSS.

  • CVE-2019-11550MedMay 8, 2019
    risk 0.38cvss 5.9epss 0.01

    Citrix SD-WAN 10.2.x before 10.2.1 and NetScaler SD-WAN 10.0.x before 10.0.7 have Improper Certificate Validation.

  • CVE-2026-3055KEVMar 23, 2026
    risk 0.22cvss epss 0.84

    Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overread

  • CVE-2025-7775KEVAug 26, 2025
    risk 0.13cvss epss 0.19

    Memory overflow vulnerability leading to Remote Code Execution and/or Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server (OR) NetScaler ADC and NetScaler…

  • CVE-2025-7776Aug 26, 2025
    risk 0.00cvss epss 0.07

    Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) with PCoIP Profile bounded to it