Critical updates indicated with gray shading, added July 11, 2025 July 11, 2025 Critical Update: At the time Cloud Software Group announced CVE-2025-5777, there was no evidence to suggest exploitation of CVE-2025-5777. Subsequently, on July 10, 2025, CISA added CVE-2025-5777 to its Known Exploited Vulnerabilities Catalog. As noted in our June 26, 2025 blog article below and … [Read more...] about NetScaler Critical Security Updates for CVE-2025-6543 and CVE-2025-5777
NetScaler news
NetScaler 13.1-FIPS achieves NDcPP certification
This post was co-authored by Rohit Raveendran, NetScaler Principal Product Marketing Manager NetScaler has achieved Network Device Collaborative Protection Profile (NDcPP) certification from the National Information Assurance Partnership (NIAP). Through achieving NDcPP certification, we at NetScaler are reinforcing our commitment to delivering secure, compliant, and … [Read more...] about NetScaler 13.1-FIPS achieves NDcPP certification
Achieving zero-trust access with FIPS-certified NetScaler 13.1
In today's increasingly complex and regulated digital landscape, ensuring robust security measures is paramount, particularly for government agencies and organizations handling sensitive information. The Federal Information Processing Standards (FIPS) provide a benchmark for cryptographic modules with regard to data security and integrity. FIPS compliance is essential … [Read more...] about Achieving zero-trust access with FIPS-certified NetScaler 13.1
Introducing NetScaler CPX Express: A DevOps-friendly, free Kubernetes ingress proxy
NetScaler has introduced a free Kubernetes ingress proxy called NetScaler CPX Express to help DevOps teams simplify and more easily manage their application traffic routing. NetScaler CPX Express is a free and community-supported version of NetScaler CPX, which is a containerized application delivery controller (ADC) designed specifically for Kubernetes … [Read more...] about Introducing NetScaler CPX Express: A DevOps-friendly, free Kubernetes ingress proxy
NetScaler is not impacted by the HTTP/2 CONTINUATION flood DoS vulnerability
On April 3, 2024, Bartek Nowotarski published a blog on HTTP/2 CONTINUATION flood that impacts multiple implementations of the HTTP/2 protocol. Please refer to this link for more details on the vulnerability. NetScaler is not impacted, and NetScaler software and platforms (SDX/MPX/VPX/BLX/CPX) are not vulnerable to the HTTP/2 CONTINUATION flood vulnerability that was … [Read more...] about NetScaler is not impacted by the HTTP/2 CONTINUATION flood DoS vulnerability