Main Vulnerability Database Vulnerabilities #VU111952

#VU111952 Buffer overflow in Citrix NetScaler Gateway and Citrix Netscaler ADC - CVE-2025-6543

Published: June 26, 2025

Vulnerability identifier: #VU111952

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber

CVE-ID: CVE-2025-6543

CWE-ID: CWE-119

Exploitation vector: Remote access

Exploit availability: The vulnerability is being exploited in the wild

Vulnerable software:
Citrix NetScaler Gateway
Citrix Netscaler ADC

Software vendor:
Citrix

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error when handling incoming requests. A remote attacker can send specially crafted traffic to the server, trigger memory corruption and perform a denial of service (DoS) attack.

Successful exploitation of the vulnerability requires that NetScaler is configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server.

Note, the vulnerability is being actively exploited in the wild.

Remediation

Install updates from vendor's website.

External links

https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694788

#VU111952 Buffer overflow in Citrix NetScaler Gateway and Citrix Netscaler ADC - CVE-2025-6543

Description

Remediation

External links

Please verify you're human