CVE-2025-6543
Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability
Severity Score
9.2
*CVSS v4
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
3
*Multiple Sources
Exploited in Wild
Yes
*KEV
Decision
Act
*SSVC
Descriptions
Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server
Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server
Citrix NetScaler ADC and Gateway contain a buffer overflow vulnerability leading to unintended control flow and Denial of Service. NetScaler must be configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
System
Vulnerable | Subsequent
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Act
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2025-06-23 CVE Reserved
- 2025-06-25 CVE Published
- 2025-06-26 First Exploit
- 2025-06-30 CVE Updated
- 2025-06-30 Exploited in Wild
- 2025-07-02 EPSS Updated
- 2025-07-21 KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (4)
| URL | Date | SRC |
|---|---|---|
| https://github.com/grupooruss/Citrix-cve-2025-6543 | 2025-06-26 | |
| https://github.com/seabed-atavism/CVE-2025-6543 | 2025-06-30 | |
| https://github.com/abrewer251/CVE-2025-6543_CitrixNetScaler_PoC | 2025-07-03 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| NetScaler Search vendor "NetScaler" | ADC Search vendor "NetScaler" for product "ADC" | >= 14.1 < 47.46 Search vendor "NetScaler" for product "ADC" and version " >= 14.1 < 47.46" | en |
Affected
| ||||||
| NetScaler Search vendor "NetScaler" | ADC Search vendor "NetScaler" for product "ADC" | >= 13.1 < 59.19 Search vendor "NetScaler" for product "ADC" and version " >= 13.1 < 59.19" | en |
Affected
| ||||||
| NetScaler Search vendor "NetScaler" | Gateway Search vendor "NetScaler" for product "Gateway" | >= 14.1 < 47.46 Search vendor "NetScaler" for product "Gateway" and version " >= 14.1 < 47.46" | en |
Affected
| ||||||
| NetScaler Search vendor "NetScaler" | Gateway Search vendor "NetScaler" for product "Gateway" | >= 13.1 < 59.19 Search vendor "NetScaler" for product "Gateway" and version " >= 13.1 < 59.19" | en |
Affected
| ||||||