All CVE disclosure blogs have moved to The Citrix Community Site
Going forward, all CVE disclosure blogs will be published in the Security Updates tab on the Citrix Community website.
CVE-2026-3055 & CVE 2026-4368
Cloud Software Group released builds on March 23, 2026 to address CVE-2026-3055 and CVE 2026-4368. Our security team has reviewed this issue and published a full CVE disclosure blog — including technical details, affected versions, and recommended remediation steps — on our community site.
Read the full disclosure blog
Read the full Security Bulletin
Why the change?
Our community site is now the dedicated home for all CVE disclosure blogs, NetScaler WAF signature updates, and vulnerability-related content. This allows us to provide richer discussion, faster updates, and a centralized resource for our users and security researchers.
If you have bookmarked this page or are following CVE updates via this site, we encourage you to update your references to point to the Security Updates tab on the Citrix Community Site.