Citrix has issued patches for three significant security vulnerabilities impacting its NetScaler ADC and NetScaler Gateway. One of these vulnerabilities, identified as CVE-2025-7775, has already been observed being actively exploited.
The vulnerabilities are outlined as follows:
-
CVE-2025-7775 (CVSS score: 9.2): This issue is a memory overflow vulnerability that can lead to remote code execution (RCE) and/or denial-of-service (DoS).
-
CVE-2025-7776 (CVSS score: 8.8): Similar in nature, this memory overflow flaw can result in unpredictable behavior and also cause denial-of-service.
-
CVE-2025-8424 (CVSS score: 8.7): This flaw involves improper access control on the NetScaler Management Interface.
Citrix has confirmed that there have been instances of exploits against CVE-2025-7775 on devices that are unpatched. However, the company has not provided additional details regarding these incidents.
To be vulnerable to exploitation, certain conditions must be met for each flaw:
-
For CVE-2025-7775, the NetScaler device must be configured as a Gateway (including VPN virtual server, ICA Proxy, etc.) or as a specific type of load-balanced virtual server.
-
In the case of CVE-2025-7776, configuration as a Gateway combined with a certain profile is necessary.
-
CVE-2025-8424 requires access to specific management IPs with management access enabled.
The vulnerabilities have been addressed in various updated versions of the NetScaler products, with no workarounds available. The fixed versions include NetScaler ADC and Gateway 14.1-47.48 or later, and 13.1-59.22 or later, among others.
Citrix has credited researchers Jimi Sebree, Jonathan Hetzer, and François Hämmerli for identifying and reporting these security issues. The discovery of CVE-2025-7775 follows closely behind previous vulnerabilities such as CVE-2025-5777 and CVE-2025-6543 that were also exploited in real-world scenarios.
Additionally, this announcement coincides with the U.S. Cybersecurity and Infrastructure Security Agency (CISA) adding two Citrix Session Recording vulnerabilities to its catalog of known exploited vulnerabilities, highlighting the urgency of addressing these security risks.
Welcome to DediRock, your trusted partner in high-performance hosting solutions. At DediRock, we specialize in providing dedicated servers, VPS hosting, and cloud services tailored to meet the unique needs of businesses and individuals alike. Our mission is to deliver reliable, scalable, and secure hosting solutions that empower our clients to achieve their digital goals. With a commitment to exceptional customer support, cutting-edge technology, and robust infrastructure, DediRock stands out as a leader in the hosting industry. Join us and experience the difference that dedicated service and unwavering reliability can make for your online presence. Launch our website.