Main Vulnerability Database Vulnerabilities #VU111237

#VU111237 Out-of-bounds read in Citrix Netscaler ADC and Citrix NetScaler Gateway - CVE-2025-5777

Published: June 17, 2025 / Updated: October 31, 2025

Vulnerability identifier: #VU111237

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber

CVE-ID: CVE-2025-5777

CWE-ID: CWE-125

Exploitation vector: Remote access

Exploit availability: The vulnerability is being exploited in the wild

Vulnerable software:
Citrix Netscaler ADC
Citrix NetScaler Gateway

Software vendor:
Citrix

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition. A remote attacker can send specially crafted data to the server, trigger an out-of-bounds read error and read contents of memory on the system.

Successful exploitation of the vulnerability requires that NetScaler is configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server.

Remediation

Install updates from vendor's website.

External links

https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX693420