CVE-2026-10816

HIGH

NetScaler ADC and Gateway Management Interfaces - Unauthenticated File Read

Title source: manual
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2026-10816. PoCs published by HermesNA-1, derekpreston81.

AI-analyzed exploit summary This repository contains an auto-generated stub module for CVE-2026-10816, an arbitrary file read vulnerability in NetScaler ADC and NetScaler Gateway. The code includes placeholder logic for target probing but lacks actual exploit implementation or technical details about the vulnerability mechanics.

Description

Arbitrary File Read (Unauthenticated) in NetScaler ADC and NetScaler Gateway if the access to NSIP, Cluster Management IP or SNIP with management access is enabled

Exploits (2)

github STUB 1 stars
by HermesNA-1 · pythonpoc
https://github.com/HermesNA-1/SnakeSploit/tree/main/data/modules_generated/cve-2026-10816_arbitrary_file_read.py

This repository contains an auto-generated stub module for CVE-2026-10816, an arbitrary file read vulnerability in NetScaler ADC and NetScaler Gateway. The code includes placeholder logic for target probing but lacks actual exploit implementation or technical details about the vulnerability mechanics.

Classification
Stub 99%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Theoretical
Target: NetScaler ADC and NetScaler Gateway
No auth needed
Prerequisites: Access to NSIP, Cluster Management IP, or SNIP with management access enabled
mistral-large-3 · analyzed Jul 09, 2026 Full analysis →
github SCANNER 1 stars
by derekpreston81 · pythonpoc
https://github.com/derekpreston81/CVE_ADC_IOC_2026

This repository contains a Python script that scans NetScaler configuration files for preconditions of specific CVEs, including CVE-2026-10816. It does not exploit vulnerabilities but checks for configurations that may indicate vulnerability.

Classification
Scanner 100%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: NetScaler ADC
No auth needed
Prerequisites: access to NetScaler configuration file or SSH credentials
mistral-large-3 · analyzed Jul 01, 2026 Full analysis →

Scores

CVSS v3 7.5
EPSS 0.0042
EPSS Percentile 33.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-610 CWE-73
Status published
Products (10)
citrix/netscaler_application_delivery_controller 14.1-66.68
citrix/netscaler_application_delivery_controller < 13.1-37.272 (2 CPE variants)
citrix/netscaler_application_delivery_controller 13.1 - 13.1-63.18
citrix/netscaler_gateway 13.1 - 13.1-63.18
NetScaler/ADC 13.1 - 63.18
NetScaler/ADC 13.1 FIPS and NDcPP - 37.272
NetScaler/ADC 14.1 - 72.61
NetScaler/ADC 14.1 FIPS - 72.61
NetScaler/Gateway 13.1 - 63.18
NetScaler/Gateway 14.1 - 72.61
Published Jun 30, 2026
Tracked Since Jun 30, 2026