All CVE disclosure blogs have moved to The Citrix Community Site Going forward, all CVE disclosure blogs will be published in the Security Updates tab on the Citrix Community website. CVE-2026-3055 & CVE 2026-4368 Cloud Software Group released builds on March 23, 2026 to … [Read more...] about Important Update: CVE Disclosures Now Live on the Citrix Community Site
Application security
Critical security update announced for NetScaler Gateway and NetScaler
Cloud Software Group released builds on August 26, 2025, to address three security vulnerabilities. NetScaler Gateway & NetScaler is affected by CVE-2025-7775, which has a CVSS score of 9.2. CVE-2025-7776 impacts NetScaler Gateway (CVSS 8.8), CVE-2025-8424 impacts NetScaler (CVSS 8.7). CVE-2025-7775 is a memory overflow vulnerability the exploit of which can lead … [Read more...] about Critical security update announced for NetScaler Gateway and NetScaler
Leading the Quantum-Ready Transition: How NetScaler Helps Prevent a Silent Data Breach Decades in the Making
The Quantum Threat is No Longer Theoretical Today, every sensitive piece of data you create, transmit, and store is encrypted. The algorithms that have underpinned modern encryption standards have generally been viewed as robust and “unbreakable” —- but that foundation is about to collapse. Current encryption standards like RSA or ECDHE, which is infeasible to decrypt by … [Read more...] about Leading the Quantum-Ready Transition: How NetScaler Helps Prevent a Silent Data Breach Decades in the Making
NetScaler ADC achieves certification for DoDIN Approved Products List
NetScaler MPX 9100 FIPS and 8900 FIPS release version 13.1, has achieved certification to be on the Department of Defense Information Network Approved Products List (DoDIN APL). The DoDIN APL is a U.S. military compliance framework. The purpose of the Approved Products List is to maintain a consolidated list of products that have passed both Interoperability and … [Read more...] about NetScaler ADC achieves certification for DoDIN Approved Products List
NetScaler Critical Security Updates for CVE-2025-6543 and CVE-2025-5777
Critical updates indicated with gray shading, added July 11, 2025 July 11, 2025 Critical Update: At the time Cloud Software Group announced CVE-2025-5777, there was no evidence to suggest exploitation of CVE-2025-5777. Subsequently, on July 10, 2025, CISA added CVE-2025-5777 to its Known Exploited Vulnerabilities Catalog. As noted in our June 26, 2025 blog article below and … [Read more...] about NetScaler Critical Security Updates for CVE-2025-6543 and CVE-2025-5777