- Citrix addressed three security vulnerabilities in NetScaler ADC and NetScaler Gateway, one of which is under active attack.
- Critical flaw CVE-2025-7775 could allow attackers to execute remote code or cause system shutdowns.
- The company released security updates for all affected product versions and reported no safe workarounds.
- Exploitation of these flaws requires specific configurations on targeted appliances.
- Other recent vulnerabilities affecting Citrix products have also been flagged for active exploitation.
Citrix has released security updates to fix three vulnerabilities in its NetScaler ADC and NetScaler Gateway products. One of the issues, tracked as CVE-2025-7775, has been exploited in real-world attacks, according to the company.
The critical CVE-2025-7775 vulnerability has a CVSS score of 9.2, indicating it could allow Hackers to take control of systems or cause them to stop working. Two other flaws—CVE-2025-7776 (CVSS 8.8) and CVE-2025-8424 (CVSS 8.7)—could lead to systems failing or allow unauthorized access to the management interface. Citrix said in its advisory that “exploits of CVE-2025-7775 on unmitigated appliances have been observed,” but did not share additional technical details.
To exploit these flaws, attackers need the products set up with certain features, such as VPN servers or specific management interface access. For CVE-2025-7775 and CVE-2025-7776, the risk increases if the devices are configured with gateway or proxy options, or if bound with IPv6 services. CVE-2025-8424 can be exploited through access points on the management interface.
The company stated there are no workarounds for these issues and urged customers to apply the security fixes immediately. The patches are available for NetScaler ADC and NetScaler Gateway versions 14.1-47.48 and later, 13.1-59.22 and later of 13.1, 13.1-FIPS and NDcPP 13.1-37.241 and later, and 12.1-FIPS/NDcPP 12.1-55.330 and later.
Researchers Jimi Sebree of Horizon3.ai, Jonathan Hetzer of Schramm & Partnerfor, and François Hämmerli discovered and reported these vulnerabilities. CVE-2025-7775 follows other recent NetScaler flaws that have drawn attention for being actively targeted.
Recently, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two other Citrix security issues (CVE-2024-8068 and CVE-2024-8069) affecting Citrix Session Recording to its Known Exploited Vulnerabilities catalog, confirming that attackers are currently using these flaws.
✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.
Previous Articles:
- CME XRP Futures Hit $1B Fastest Ever as Gemini Tops Coinbase App
- Gemini Unveils XRP Mastercard: No New Perks, Just Blue Branding
- Google Unveils Gemini 2.5 Flash Image to Rival OpenAI’s ChatGPT
- MixShell Malware Targets U.S. Manufacturers in ZipLine Attack
- Ethereum Hits New All-Time High as Stablecoin Growth Surges
