Вход на сайт

Просмотр новости

Найдите то, что Вас интересует

Citrix patches a new NetScaler flaw with echoes of CitrixBleed

Дата публикации: 30-06-2026 21:46:38

The bulletin includes six NetScaler issues, but attention is centered on a high-severity flaw with similarities to earlier actively exploited bugs.
The post Citrix patches a new NetScaler flaw with echoes of CitrixBleed appeared first on CyberScoop.


Основное содержимое страницы с новостью.

Citrix published a security bulletin Tuesday disclosing six vulnerabilities in NetScaler ADC and NetScaler Gateway appliances, including a high-severity memory disclosure flaw that researchers say belongs to a vulnerability class first identified in the 2023 incident known as CitrixBleed.

The company rated the overall bulletin severity as high and assigned CVSS scores ranging from 6.9 to 8.8 across the six CVEs. Citrix said customers should install the updated builds and, in one case, manually adjust a configuration parameter even after patching.

The most closely scrutinized of the vulnerabilities, CVE-2026-8451, was discovered by researchers at watchTowr, a cybersecurity firm that has published several prior analyses of issues in NetScaler products. According to a technical writeup the firm released alongside Tuesday’s disclosure, the vulnerability stems from how NetScaler parses SAML authentication requests when an appliance is configured as a SAML identity provider, a deployment mode commonly used for single sign-on.

WatchTowr researcher Aliz Hammond wrote that the firm found the flaw in late March while reproducing a separate vulnerability, CVE-2026-3055, that Citrix disclosed earlier this year. That March flaw was added to CISA’s Known Exploited Vulnerabilities catalog after researchers and the agency confirmed active exploitation within days of disclosure. The new flaw shares a root cause with the March bug: both involve out-of-bounds memory reads triggered by malformed SAML requests sent to NetScaler’s authentication endpoints.

“Referencing what we wrote previously, because it is demonstrably evergreen: ‘However, what should be of concern is the bigger picture – the trend, which is very clearly suggesting that memory management continues to appear fragile within Citrix NetScaler appliances, to the extent that even accidentally misconfiguring an appliance can lead to the disclosure of leaked memory,’” Hammond wrote in the report. 

The bulletin also discloses five additional vulnerabilities affecting different NetScaler subsystems. Two involve memory overflow conditions that could cause denial-of-service outcomes. A separate flaw could allow unauthenticated arbitrary file reads on appliances where management access is exposed on certain network interfaces. Another concerns memory overread triggered through TCP timestamp handling. The sixth involves a denial-of-service condition tied to malformed HTTP/2 requests, which requires an additional manual configuration change to fully fix, since the relevant timeout parameter defaults to a value that leaves the underlying condition unaddressed unless administrators set it explicitly.

Along with Hammond, the bulletin credits Michael Tucker of the XOR team at JPMorgan Chase and Maxim Suhanov for finding the vulnerabilities. 

The NetScaler product line has accumulated more than 20 entries in CISA’s KEV catalog over the past three years, including multiple flaws that have been weaponized in ransomware campaigns. As of Tuesday, the latest vulnerability had not joined that list — neither the vendor bulletin nor watchTowr’s writeup cited confirmed exploitation at the time of disclosure.

Схожие новости

#Наименование новостиТональностьИнформативностьДата публикации
1Researchers spot exploitation of another critical Oracle defect0501-07-2026
2How ransomware syndicates weaponize corporate-style organization0730-06-2026
3Sysdig clocks first documented case of agentic ransomware0706-07-2026
4Suspected Chinese espionage group used a Roundcube exploit chain to burrow into universities0707-07-2026
5This phishing kit looks more like BEC-as-a-service0501-07-2026
6Klue Breach Exposes Salesforce Data Across Cybersecurity Vendors as Icarus Claims Attack0724-06-2026
7Сливы убирают с прилавка: количество публикаций утечек баз данных в 2026 г. уменьшилось на 45%0707-07-2026
8Critical Shynet Flaw Let Attackers Turn Web Analytics Scripts Into a Sitewide Keylogger-3724-06-2026
9DragonForce Ransomware Is Hiding in Microsoft Teams Traffic0717-06-2026
10Виртуализация zVirt 5.0 показала отсутствие уязвимостей по результатам очередного этапа grey-box тестирования Cicada80507-07-2026

Классификация: Пресс-релизы. Схожих патентов: 0. Схожих новостей: 10. Тональность: 0. Информативность: 5. Источник: www.cyberscoop.com.