Known Vulnerabilities for Netscaler by Citrix
Listed below are 10 of the newest known vulnerabilities associated with "Netscaler" by "Citrix".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-13474 json | Denial of service via malformed HTTP/2 requests in NetScaler ADC and NetScaler Gateway if HTTP/2 is enabled in HTTP Profil... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-10817 json | Insufficient input validation leading to memory overread in NetScaler ADC and NetScaler Gateway if the TCP TimeStamp is ena... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-10816 json | Arbitrary File Read (Unauthenticated) in NetScaler ADC and NetScaler Gateway if the access to NSIP, Cluster Management IP or... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-8655 json | Multiple Memory overflow vulnerabilities in NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behav... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-8452 json | Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-8451 json | Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler ADC or NetSca... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-4368 json | Race Condition in NetScaler ADC and NetScaler Gateway when appliance is configured as Gateway (SSL VPN, ICA Proxy, CVPN, RD... | Not Provided | 2026-03-23 | 2026-05-10 |
| CVE-2018-6186 json | Citrix NetScaler VPX through NS12.0 53.13.nc allows an SSRF attack via the /rapi/read_url URI by an authenticated attacker wh... | 8.8 - HIGH | 2018-02-01 | 2018-03-03 |
| CVE-2016-2072 json | Not Provided | 2016-02-17 | 2026-05-06 | |
| CVE-2016-2071 json | Not Provided | 2016-02-17 | 2026-05-06 |