🟠 High | Source: The Hacker News
Citrix has released patches for six vulnerabilities in NetScaler ADC and NetScaler Gateway, the most severe of which (CVE-2026-8451, CVSS 8.8) stems from insufficient input validation and could allow attackers to read arbitrary files or crash affected systems. These products are widely deployed as network edge components, making them high-value targets. Unpatched instances exposed to the internet are at meaningful risk of exploitation.
Security Architect’s Take: Prioritise patching NetScaler ADC and NetScaler Gateway instances immediately, particularly any internet-facing deployments — review Citrix’s advisory for affected version ranges and apply the latest builds. In the interim, consider restricting management interface access to trusted IP ranges and reviewing WAF rules to limit exposure.
Original advisory: Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service