In our recent update to our announcement of CVE 2025-5777, we noted that on July 10, 2025, CISA added CVE-2025-5777 to its Known Exploited Vulnerabilities Catalog. To help customers assess their security posture, we've provided additional guidance below. In unpatched appliances, if attempts to exploit or scan for CVE-2025-5777 have taken place, then there may be some … [Read more...] about Evaluating NetScaler logs for indicators of attempted exploitation of CVE-2025-5777
NetScaler Critical Security Updates for CVE-2025-6543 and CVE-2025-5777
Critical updates indicated with gray shading, added July 11, 2025 July 11, 2025 Critical Update: At the time Cloud Software Group announced CVE-2025-5777, there was no evidence to suggest exploitation of CVE-2025-5777. Subsequently, on July 10, 2025, CISA added CVE-2025-5777 to its Known Exploited Vulnerabilities Catalog. As noted in our June 26, 2025 blog article below and … [Read more...] about NetScaler Critical Security Updates for CVE-2025-6543 and CVE-2025-5777
Critical severity update announced for NetScaler Gateway and NetScaler
Cloud Software Group released builds on June 25, 2025, to address one security vulnerability. NetScaler Gateway is affected by CVE 2025-6543, which has a CVSS score of 9.3. CVE 2025-6543 impacts NetScaler Gateway and NetScaler. The vulnerability is a memory safety vulnerability which may lead to memory corruption and Denial of Service on NetScaler appliances. An indication … [Read more...] about Critical severity update announced for NetScaler Gateway and NetScaler
Critical security updates for NetScaler, NetScaler Gateway, and NetScaler Console
Cloud Software Group released builds on June 17, 2025, to address three security vulnerabilities. NetScaler Gateway is affected by CVE 2025-5777, which has a CVSS score of 9.3. CVE 2025-5349 impacts all NetScaler form-factors (CVSS 8.7), CVE 2025-4365 impacts on-premises NetScaler Console (CVSS 6.9). CVE 2025-5777 is a critical severity vulnerability impacting NetScaler … [Read more...] about Critical security updates for NetScaler, NetScaler Gateway, and NetScaler Console
CVE-2024-12284: High-severity security update for NetScaler Console
On February 18, 2025, Cloud Software Group released builds to fix CVE-2024-12284, which affects NetScaler Console. This vulnerability has been discovered in NetScaler Console (formerly NetScaler ADM) and NetScaler Console Agent and has been assigned a CVSS score of 8.8. The issue arises due to inadequate privilege management and could be exploited by an authenticated … [Read more...] about CVE-2024-12284: High-severity security update for NetScaler Console