CVE-2025-5777
Published Jun 17, 2025
Last updated 6 months ago
AI description
CVE-2025-5777 is a vulnerability affecting NetScaler ADC and NetScaler Gateway. It is caused by insufficient input validation, which leads to a memory overread. The vulnerability can be exploited on devices configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or an AAA virtual server. An unauthorized attacker could potentially grab valid session tokens from the memory of internet-facing NetScaler devices by sending a malformed request. Successful exploitation could allow the attacker to gain access to the appliances.
- Description
- Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server
- Source
- secure@citrix.com
- NVD status
- Modified
- Products
- netscaler_application_delivery_controller, netscaler_gateway
CVSS 4.0
- Type
- Secondary
- Base score
- 9.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
Data from CISA
- Vulnerability name
- Citrix NetScaler ADC and Gateway Out-of-Bounds Read Vulnerability
- Exploit added on
- Jul 10, 2025
- Exploit action due
- Jul 11, 2025
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Hype score
- Not currently trending
Hackers are exploiting QEMU VMs to create reverse SSH tunnels for deploying ransomware and RATs. Campaigns STAC4713 and STAC3725 leveraged SonicWall VPNs, SolarWinds CVE-2025-26399, and CitrixBleed2 CVE-2025-5777. #GoldEncounter #QEMUAbuse #USA https://t.co/cis34haini
@TweetThreatNews
21 Apr 2026
255 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2022-40769 2 - CVE-2025-5777 3 - CVE-2025-8088 4 - CVE-2023-41064 5 - CVE-2026-21643 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
5 Apr 2026
256 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
IR/CERT Morning Brief Today’s brief centered on exploitable enterprise exposure and follow-on access risk: Citrix NetScaler CVE-2025-5777 / CVE-2025-5349, SAP NetWeaver abuse tied to the “10KBLAZE” cluster, SonicWall SMA credential exposure concerns, and ClickFix-style mal
@Team_D4rkn3ttz
5 Apr 2026
305 Impressions
0 Retweets
0 Likes
0 Bookmarks
5 Replies
0 Quotes
TRC analysis shows attackers exploiting CVE-2025-5777 in Citrix NetScaler to read sensitive memory contents including session tokens and credentials. The memory overread vulnerability enables lateral movement through compromised authentication systems. Runtime segmentation helps
@aviatrixtrc
28 Mar 2026
124 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
TRC analysis shows attackers exploiting CitrixBleed 2 (CVE-2025-5777) to steal session tokens from NetScaler SAML providers, then escalating privileges for admin access. Over 100 organizations compromised despite patches being available. Runtime segmentation helps limit
@aviatrixtrc
26 Mar 2026
129 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
TRC analysis shows attackers exploiting CVE-2025-5777 to extract session tokens from Citrix NetScaler memory, then moving laterally through networks with stolen credentials. Runtime segmentation helps contain such post-compromise activity by limiting blast radius. #ZeroTrust
@aviatrixtrc
25 Mar 2026
143 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2026-21992 2 - CVE-2025-5777 3 - CVE-2026-3909 4 - CVE-2025-32975 5 - CVE-2008-0166 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
24 Mar 2026
179 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ We are observing an active exploitation campaign targeting Citrix NetScaler instances We have observed 500+ exploit attempts of both CitrixBleeds (CVE-2025-5777 and CVE-2023-4966) against our NetScaler decoys across multiple regions: 193.24.211.86 AS215929 🇧🇬 Data
@DefusedCyber
16 Mar 2026
10826 Impressions
25 Retweets
66 Likes
25 Bookmarks
1 Reply
1 Quote
🚨 زيادة اختراقات وحملات إلكترونية عالمية ملخص الأسبوع: تقرير يكشف عن تصاعد الاختراقات الأمنية والإجراءات التنظيمية وتطورات الجريمة الإلكترونية حول ال
@MisbarSec
14 Feb 2026
32 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
Cytellite recent detection targeting CVE-2025-5777 — ZEN-ECN Visit -- https://t.co/S4tqaJzvww #Loginsoft #Cytellite #Cybersecurity #CVE20255777 #LOVI #ThreatIntelligence #Infosecurity #AI https://t.co/AgvAT8LfZh
@Loginsoft_Intel
14 Jan 2026
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cytellite recent detection targeting CVE-2025-5777 — ZEN-ECN Visit -- https://t.co/S4tqaJzvww #Loginsoft #Cytellite #Cybersecurity #CVE20255777 #LOVI #ThreatIntelligence #Infosecurity #AI https://t.co/gOwQThkcia
@Loginsoft_Intel
14 Jan 2026
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
(THREAD) 1/5 🚨 **UPDATE on CitrixBleed 2 Vulnerability!** This critical flaw (CVE-2025-5777) is wreaking havoc, especially for crypto firms. Here’s what you need to know:
@btc_box_
1 Dec 2025
39 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
#ICYMI Amazon honeypot service detected exploitation attempts for the Citrix Bleed Two vulnerability (CVE-2025-5777) prior to public disclosure, indicating a threat actor had been exploiting the vulnerability as a zero-day. https://t.co/ntkCi3KJnt #threatintel #deception
@jc_vazquez
28 Nov 2025
130 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚩 Amazon Uncovers Attacks Exploiting Cisco ISE and Citrix NetScaler as Zero-Day Flaws https://t.co/6iKbcRSPWl Amazon's MadPot honeypot network detected advanced threat actors exploiting two zero-days: CVE-2025-5777 (Citrix Bleed 2) and CVE-2025-20337 (Cisco ISE RCE) to deplo
@Huntio
22 Nov 2025
1129 Impressions
4 Retweets
9 Likes
3 Bookmarks
1 Reply
0 Quotes
🚨 Pennsylvania AG Breach Exposes SSNs via Citrix Bleed 2 INC ransomware gang exploited Citrix Bleed 2 (CVE-2025-5777) to breach Pennsylvania's Office of the Attorney General, stealing SSNs and medical information. What's concerning: the August attack disrupted the state's
@the_c_protocol
18 Nov 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📢 𝐇𝐨𝐭 𝐨𝐟𝐟 𝐭𝐡𝐞 𝐩𝐫𝐞𝐬𝐬: 𝐂𝐕𝐄 𝐢𝐧𝐬𝐢𝐠𝐡𝐭𝐬! See how CVE-2025-5777 led to a major ransomware breach at the Pennsylvania AG's office. Learn defense tactics and breach insights in this deep-dive. 📖 Check the de
@PurpleOps_io
18 Nov 2025
26 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Zero-Day Threats Strike Cisco and Amazon Systems! Critical zero-day vulnerabilities in Cisco ISE (CVE-2025-20337) and Citrix NetScaler (CVE-2025-5777) were exploited in the wild before patches were released, enabling attackers to install stealth web shells and gain administrator
@ChbibAnas
16 Nov 2025
37 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-5777
@transilienceai
15 Nov 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Amazon uncovered an advanced APT simultaneously exploiting Cisco ISE RCE (CVE-2025-20337) and Citrix Bleed Two (CVE-2025-5777) as zero-days. The attacker deployed a custom in-memory web shell on Cisco ISE. #CiscoZeroDay #CitrixHack #Cyberespionage https://t.co/Ra8EmmvliU
@the_yellow_fall
14 Nov 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
An advanced threat actor exploited the critical vulnerabilities “Citrix Bleed 2" (CVE-2025-5777) in NetScaler ADC and Gateway, and CVE-2025-20337 affecting Cisco Identity Service Engine (ISE) as zero-days to deploy custom malware. https://t.co/8Tc9omcR04
@blackwired32799
14 Nov 2025
45 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🍯@aws discovers APT exploiting Cisco and Citrix zero-days. Honeypot service detected exploitation attempts for the Citrix Bleed Two vulnerability (CVE-2025-5777) prior to public disclosure. https://t.co/ntkCi3KJnt #cybersecurity #threatintel #deception
@jc_vazquez
13 Nov 2025
27 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
https://t.co/820U4pK5ip APT Group Exploits Zero-Days in Cisco and Citrix Systems Amazon’s MadPot honeypot service detected the exploitation attempts, leading to the identification of CVE-2025-5777 and CVE-2025-20337.
@SecOpsWatch
13 Nov 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Amazon sees exploitation of Cisco ISE (CVE-2025-20337) and CitrixBleed 2 (CVE-2025-5777) as zero-days - patch now and monitor access. https://t.co/2yAwI7TEDc #infosec #Cisco #Citrix #ZeroDay #CVE2025-20337
@_UncleHacker_
13 Nov 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
What is CitrixBleed 2 (CVE-2025-5777)? - https://t.co/IVTPOB5Qer https://t.co/uI5KEpEGLG
@Cyberwarzonecom
13 Nov 2025
48 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Amazonが未公開のゼロデイ脆弱性を悪用する高度な攻撃キャンペーンを発見。標的はCisco ISEとCitrixシステムで、攻撃者は独自のWebシェルを導入し管理権限を奪取していたという。 Amazonのハニーポット「MadPot」
@yousukezan
13 Nov 2025
1318 Impressions
0 Retweets
6 Likes
3 Bookmarks
0 Replies
0 Quotes
⚠️ ZERO-DAY ALERT: Amazon uncovers an advanced actor exploiting new zero-days in Cisco ISE (CVE-2025-20337) & Citrix NetScaler (CVE-2025-5777). Campaign targets critical identity & network infrastructure. Patches pending. #CyberSecurity #ZeroDay #Th... 🔗 https://t
@NetSecIO
12 Nov 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Amazon's threat intelligence team identified exploitation attempts using previously undisclosed vulnerabilities in Citrix Bleed Two and Cisco ISE (CVE-2025-5777 and CVE-2025-20337). The unknown threat actor deployed a sophisticated custom web shell backdoor with advanced evasion
@Leila97726926
12 Nov 2025
36 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actor mass exploiting CVE-2025-5777 (Citrix Netscaler “CitrixBleed 2”) from 206.237.15.245 🇰🇷 ( MOACK .Co. LTD ) VirusTotal Detections: 0/95 🟢 This actor exploited multiple Netscaler honeypots using CVE-2025-5777 within a span of 30 minutes https://t.co/U7eEfUK
@DefusedCyber
19 Oct 2025
1070 Impressions
3 Retweets
12 Likes
4 Bookmarks
1 Reply
0 Quotes
Actor mass exploiting CVE-2025-5777 (Citrix Netscaler “CitrixBleed 2”) from 158.179.174.140 🇰🇷 ( ORACLE-BMC-31898 ) VirusTotal Detections: 0/95 🟢 This actor has exploited multiple honeypots within the past 2 days https://t.co/zrQlkx835V
@DefusedCyber
16 Oct 2025
794 Impressions
0 Retweets
8 Likes
4 Bookmarks
1 Reply
0 Quotes
Citrix NetScaler vulnerado! CVE-2025-5777 (9.3) e CVE-2025-6543 (9.2) expõem milhares de instâncias, permitindo leitura de memória, DoS e sequestro de sessão. Patches urgentes são essenciais! #Citrix #ZeroDay #Cibersegurança https://t.co/2i3C6MEqsB
@andre_lug
16 Oct 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A Few Exploits Captured Over the Weekend 🧨 95.143.193.150 ( Internetport Sweden AB ) 🇸🇪 Exploiting CVE-2025-25257 (FortiWeb SQLi) 146.56.116.119 ( ORACLE-BMC-31898 ) 🇰🇷 Exploiting CVE-2025-5777 (CitrixBleed 2) 146.70.166.212 ( M247 Europe SRL ) 🇺🇸 Ex
@DefusedCyber
12 Oct 2025
9621 Impressions
20 Retweets
92 Likes
33 Bookmarks
2 Replies
1 Quote
Exploit indicators captured over the weekend 🧨 95.143.193.150 ( Internetport Sweden AB ) 🇸🇪 Exploiting CVE-2025-25257 (FortiWeb SQLi) 146.56.116.119 ( ORACLE-BMC-31898 ) 🇰🇷 Exploiting CVE-2025-5777 (CitrixBleed 2) 146.70.166.212 ( M247 Europe SRL ) 🇺🇸
@DefusedCyber
12 Oct 2025
193 Impressions
1 Retweet
3 Likes
0 Bookmarks
0 Replies
1 Quote
⚠️ Weekly vuln radar from https://t.co/8RzyA4nEyg: CVE-2024-3400 (@stevenadair) CVE-2025-24132 CVE-2025-43300 CVE-2025-5777 CVE-2025-55177 CVE-2023-34044 (@pr0Ln) CVE-2023-20870 CVE-2025-10035 CVE-2025-20333 https://t.co/Z18UZ0WhOF
@ptdbugs
3 Oct 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actor mass exploiting CVE-2025-5777 (Citrix Netscaler “CitrixBleed 2”) from 146.56.116.119 🇰🇷 ( ORACLE-BMC-31898 ) VirusTotal Detections: 0/95 🟢 Actor exploited multiple Netscaler honeypots in a short time period https://t.co/ap39LVefsW
@DefusedCyber
2 Oct 2025
1840 Impressions
3 Retweets
12 Likes
3 Bookmarks
1 Reply
1 Quote
GATEWAY BREACH! A critical NetScaler Auth Bypass (CVE-2025-5777) flaw allows Session Hijacking, enabling APT groups to Pivot into Internal Networks. Your perimeter is obsolete. Read the full report on - https://t.co/JuBZVKyRAQ https://t.co/hylF2Inrjs
@cyberbivash
29 Sept 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2025-24085 2 - CVE-2022-2471 3 - CVE-2025-5777 4 - CVE-2024-49019 5 - CVE-2024-36401 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
29 Sept 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actor mass exploiting CVE-2025-5777 (Citrix Netscaler “CitrixBleed 2”) from 146.56.112.175 🇰🇷 ( ORACLE-BMC-31898 ) VirusTotal Detections: 0/95 🟢 This actor hit over multiple honeypots within the 10 minutes https://t.co/ZoA2W0QhOs
@DefusedCyber
28 Sept 2025
11782 Impressions
27 Retweets
94 Likes
42 Bookmarks
6 Replies
0 Quotes
Explicación y uso de CVE-2025-5777 https://t.co/Ja8WwoNIx6 #Informatica #SeguridadInformatica
@f3nixh4ck
23 Sept 2025
55 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting Citrix NetScaler ADC and Gateway to its ... https://t.co/mDrgTWTlfC
@SecurityAid
21 Sept 2025
61 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Exploits, Technical Details Released for CitrixBleed2 Vulnerability Researchers released technical information and exploit code targeting a critical vulnerability (CVE-2025-5777) in Citrix NetScaler. The post Exploits, Technical Details Released for CitrixBleed2 Vulnerability...
@SecurityAid
15 Sept 2025
58 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
(THREAD) 1/5 🚨 UPDATE ON CITRIXBLEED 2 VULNERABILITY: Impacts on Crypto Firms! The CitrixBleed 2 (CVE-2025-5777) vulnerability is wreaking havoc! Unauthenticated attackers can read sensitive memory data, including session tokens, paving the way for session hijacking.
@btc_box_
13 Sept 2025
76 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actor mass exploiting CVE-2025-5777 (Citrix Netscaler “CitrixBleed 2”) from 67.217.228.239 🇺🇸 ( BLNWX ) VirusTotal Detections: 0/94 🟢 This actor hit over 10 different honeypots within the span of two hours https://t.co/O6mCnitNNl
@DefusedCyber
12 Sept 2025
3095 Impressions
3 Retweets
19 Likes
7 Bookmarks
0 Replies
1 Quote
CVE-2025-5777とCVE-2025-7775、最近話題になっているCitrix Netscaler ADC/Gatewayの脆弱性の件。いまのところ、7775については状況はEPSSとの乖離はなさそう。 この状況で、とっととバージョンを挙げておくのが事前策です
@papa_anniekey
3 Sept 2025
577 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-5777 : Citrix NetScaler Memory Leak Exploit (CitrixBleed 2) https://t.co/Px9LQoLRwn… https://t.co/J0M8Hov3Mn
@sirjameshackz
2 Sept 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
''CVE-2025-5777: CitrixBleed 2 Exploit Deep Dive by https://t.co/gjPe02ABar'' #infosec #pentest #redteam #blueteam https://t.co/rekswd3E5c
@CyberWarship
2 Sept 2025
1364 Impressions
0 Retweets
7 Likes
3 Bookmarks
0 Replies
0 Quotes
Actor exploiting CVE-2025-5777 (Citrix Netscaler “CitrixBleed 2”) from 213.156.152.94 ( G-Core Labs S.A. ) 🇹🇷 VirusTotal Detections: 0/94 🟢 https://t.co/OhC2xSFr0S
@DefusedCyber
29 Aug 2025
1049 Impressions
5 Retweets
17 Likes
2 Bookmarks
0 Replies
0 Quotes
⚠️ Weekly vuln radar. https://t.co/Cd6L8ACyLV – spot what’s trending before it’s everywhere: CVE-2025-53770 CVE-2025-43300 CVE-2025-5777 CVE-2024-21887 CVE-2023-46604 (@ThreatBookLabs) CVE-2025-7776 CVE-2025-54309 CVE-2025-7775 CVE-2025-53771 https://t.co/q4Rx5wWFSt
@ptdbugs
29 Aug 2025
286 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
[1day1line] CVE-2025-5777: Citrix ADC Memory Leak Vulnerability https://t.co/NEWf6WdDK9 Hello. Today's Daily One Line is about CVE-2025-5777, a vulnerability in Citrix ADC. The memory leak vulnerability occurred due to improper initialization of the login parameters passed via
@hackyboiz
27 Aug 2025
767 Impressions
5 Retweets
9 Likes
3 Bookmarks
0 Replies
0 Quotes
Discover how to detect, mitigate, and respond to CitrixBleed 2 (CVE-2025-5777), a critical Citrix NetScaler ADC and Gateway vulnerability exploited in the wild. https://t.co/vy7asODb19 https://t.co/zt9B9sTwuF
@idudens
25 Aug 2025
71 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#VulnerabilityReport #ADC CitrixBleed 2: CVE-2025-5777 Joins CISA’s KEV Catalog Amid Active Exploitation Storm, PoC Available https://t.co/KZVMyiDlmv
@Komodosec
17 Aug 2025
58 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*",
"matchCriteriaId": "D907BEC2-6930-4989-A6E1-847B4763BB12",
"versionEndExcluding": "12.1-55.328",
"versionStartIncluding": "12.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*",
"matchCriteriaId": "7AF5A6EE-84A9-42AA-BC4B-7C3367D08CAF",
"versionEndExcluding": "13.1-37.235",
"versionStartIncluding": "13.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:ndcpp:*:*:*",
"matchCriteriaId": "E219F46B-FCBE-4DA2-9094-6ED128E8AF66",
"versionEndExcluding": "13.1-37.235",
"versionStartIncluding": "13.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*",
"matchCriteriaId": "48A64F62-2A5A-40CB-A507-A48497BD749A",
"versionEndExcluding": "13.1-58.32",
"versionStartIncluding": "13.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*",
"matchCriteriaId": "6484AA47-81F8-4EE6-9F33-96DEFE2F66E1",
"versionEndExcluding": "14.1-43.56",
"versionStartIncluding": "14.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2C86D66F-888F-4519-B700-9ADC4EE6913C",
"versionEndExcluding": "13.1-58.32",
"versionStartIncluding": "13.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D4E61FAA-9EAB-4F9B-887F-C5DC0DA0C633",
"versionEndExcluding": "14.1-43.56",
"versionStartIncluding": "14.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]