CVE-2025-5349

HIGH

NetScaler ADC & Gateway - Info Disclosure

Title source: llm

Description

Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway

Exploits (1)

nomisec SCANNER 1 stars
by olimpiofreitas · poc
https://github.com/olimpiofreitas/CVE-2025-5349-Scanner

References (1)

Scores

CVSS v3 8.8
EPSS 0.0027
EPSS Percentile 50.1%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-1284
Status published
Products (4)
citrix/netscaler_application_delivery_controller 12.1 - 12.1-55.328
citrix/netscaler_application_delivery_controller 13.1 - 13.1-37.235
citrix/netscaler_application_delivery_controller 13.1 - 13.1-58.32
citrix/netscaler_gateway 13.1 - 13.1-58.32
Published Jun 17, 2025
Tracked Since Feb 18, 2026