CVE-2025-5349

HIGH

NetScaler ADC & Gateway - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-5349. PoCs published by olimpiofreitas.

AI-analyzed exploit summary The repository contains a Python script that scans for CVE-2025-5349 by checking if a specific endpoint returns a 200 status code and contains certain strings in the response. It does not exploit the vulnerability but detects potential exposure.

Description

Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway

Exploits (1)

nomisec SCANNER 1 stars

by olimpiofreitas · poc

https://github.com/olimpiofreitas/CVE-2025-5349-Scanner

View Code ZIP pw:eip

The repository contains a Python script that scans for CVE-2025-5349 by checking if a specific endpoint returns a 200 status code and contains certain strings in the response. It does not exploit the vulnerability but detects potential exposure.

Classification

Scanner 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: NetScaler ADC/Gateway

No auth needed

Prerequisites: Network access to the target host · Target running NetScaler ADC/Gateway with the vulnerable endpoint exposed

MITRE ATT&CK

T1595 - Active Scanning

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory

https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX693420

Scores

CVSS v3 8.8

EPSS 0.0365

EPSS Percentile 88.1%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-1284

Status published

Products (4)

citrix/netscaler_application_delivery_controller 12.1 - 12.1-55.328

citrix/netscaler_application_delivery_controller 13.1 - 13.1-37.235

citrix/netscaler_application_delivery_controller 13.1 - 13.1-58.32

citrix/netscaler_gateway 13.1 - 13.1-58.32

Published Jun 17, 2025

Tracked Since Feb 18, 2026