CVE-2025-6543

CRITICAL KEV

NetScaler ADC & Gateway < - Buffer Overflow

Title source: llm

Description

Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

Exploits (3)

nomisec SCANNER 5 stars

by abrewer251 · poc

https://github.com/abrewer251/CVE-2025-6543_CitrixNetScaler_PoC

View Code ZIP pw:eip

nomisec SCANNER 4 stars

by grupooruss · poc

https://github.com/grupooruss/Citrix-cve-2025-6543

View Code ZIP pw:eip

nomisec SCANNER

by lex1010 · poc

https://github.com/lex1010/CVE-2025-6543

View Code ZIP pw:eip

References (2)

[Vendor Advisory] https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694788

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-6543

Scores

CVSS v3 9.8

EPSS 0.0180

EPSS Percentile 82.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2025-06-30

VulnCheck KEV 2025-06-25

ENISA EUVD EUVD-2025-19085

CWE

CWE-119

Status published

Products (3)

citrix/netscaler_application_delivery_controller 13.1 - 13.1-37.236 (2 CPE variants)

citrix/netscaler_application_delivery_controller 13.1 - 13.1-59.19

citrix/netscaler_gateway 13.1 - 13.1-59.19

Published Jun 25, 2025

KEV Added Jun 30, 2025

Tracked Since Feb 18, 2026