CVE-2025-6543

CRITICAL KEV

NetScaler ADC & Gateway < - Buffer Overflow

Title source: llm

Description

Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

Exploits (3)

nomisec SCANNER 5 stars

by abrewer251 · poc

https://github.com/abrewer251/CVE-2025-6543_CitrixNetScaler_PoC

View Code ZIP pw:eip

nomisec SCANNER 4 stars

by grupooruss · poc

https://github.com/grupooruss/Citrix-cve-2025-6543

View Code ZIP pw:eip

nomisec SCANNER

by lex1010 · poc

https://github.com/lex1010/CVE-2025-6543

View Code ZIP pw:eip

References (2)

[Vendor Advisory] https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694788

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-6543

Scores

CVSS v3 9.8

EPSS 0.0202

EPSS Percentile 83.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitation Intel

CISA KEV 2025-06-30

VulnCheck KEV 2025-06-25

ENISA EUVD EUVD-2025-19085

Classification

CWE

CWE-119

Status published

Affected Products (4)

citrix/netscaler_application_delivery_controller < 13.1-37.236

citrix/netscaler_application_delivery_controller < 13.1-59.19

citrix/netscaler_gateway < 13.1-59.19

Timeline

Published Jun 25, 2025

KEV Added Jun 30, 2025

Tracked Since Feb 18, 2026