CVE-2025-6543

Published Jun 25, 2025

Last updated 5 days ago

Exploit knownCVSS critical 9.2
NetScaler ADC
NetScaler Gateway
Citrix

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-6543 is a memory overflow vulnerability found in Citrix NetScaler ADC and NetScaler Gateway. It affects appliances configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server. The vulnerability stems from improper restriction of operations within the bounds of a memory buffer. Successful exploitation of CVE-2025-6543 could lead to unintended control flow and a denial-of-service (DoS) condition. Exploits targeting this vulnerability have been observed in the wild, prompting Citrix to release security updates.

Description
Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server
Source
secure@citrix.com
NVD status
Analyzed
Products
netscaler_application_delivery_controller, netscaler_gateway

Risk scores

CVSS 4.0

Type
Secondary
Base score
9.2
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity
CRITICAL

CVSS 3.1

Type
Primary
Base score
9.8
Impact score
5.9
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
CRITICAL

Known exploits

Data from CISA

Vulnerability name
Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability
Exploit added on
Jun 30, 2025
Exploit action due
Jul 21, 2025
Required action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Weaknesses

secure@citrix.com
CWE-119

Social media

Hype score
Not currently trending

  1. Citrix NetScaler vulnerado! CVE-2025-5777 (9.3) e CVE-2025-6543 (9.2) expõem milhares de instâncias, permitindo leitura de memória, DoS e sequestro de sessão. Patches urgentes são essenciais! #Citrix #ZeroDay #Cibersegurança https://t.co/2i3C6MEqsB

    @andre_lug

    16 Oct 2025

    6 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. Citrix NetScalerの重大(Critical)な脆弱性CVE-2025-6543の詳細をKevin Beaumont氏が公表。同脆弱性は5月から悪用されていたとオランダ国家サイバーセキュリティセンターが指摘している。 https://t.co/FsJeVTsper

    @__kokumoto

    30 Aug 2025

    1049 Impressions

    1 Retweet

    7 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. セキュリティ研究者ケビン・ボーモント氏は、CVE-2025-6543というCitrix NetScalerの重大脆弱性について警告を発した。 この脆弱性は当初Citrixにより「DoS(サービス拒否)」と説明されたが、

    @yousukezan

    30 Aug 2025

    1142 Impressions

    1 Retweet

    6 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  4. 🚨 Dutch NCSC confirms active exploitation of Citrix NetScaler CVE-2025-6543 in critical sectors! Urgent patching needed to avoid impact. #CyberSecurity #VulnerabilityAlert https://t.co/oD3FLKmLGC

    @xcybersecnews

    27 Aug 2025

    113 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  5. #hacksnap Got an itch to hack Snapchat’s deepest corners ?🔑 #snapchatleak #hack #snaphack #snapchatsupport #hackeyesonly #snapchatrecovery #fypシ  #snapchatleak #StrayKids #LoveIsland CVE-2025-6543 (CVSS 9.2) is being exploited in the wild-affecting NetScaler ADC VPN

    @dinero_hackz

    22 Aug 2025

    1 Impression

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. #hacksnap Got an itch to hack Snapchat’s deepest corners ?🔑 #snapchatleak #hack #snaphack #snapchatsupport #hackeyesonly #snapchatrecovery #fypシ  #snapchatleak #StrayKids #LoveIsland CVE-2025-6543 (CVSS 9.2) is being exploited in the wild-affecting NetScaler ADC VPN

    @Mr_James_Cyber

    21 Aug 2025

    84 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. Actively exploited CVE : CVE-2025-6543

    @transilienceai

    20 Aug 2025

    25 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  8. المركز الوطني للأمن السيبراني الهولندي يؤكد استغلال ثغـ ـرة Citrix NetScaler CVE-2025-6543 في قطاعات حيوية التفاصيل... https://t.co/4Qf7TUQHmY #مركز_الأمن_السيبراني_للابحاث_والدر

    @ccforrs

    17 Aug 2025

    69 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. Netherlands: Citrix Netscaler flaw CVE-2025-6543 exploited to breach orgs https://t.co/wgi5HD5JES

    @davidi99

    17 Aug 2025

    121 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. 🚨 Urgent! Citrix Netscaler flaw CVE-2025-6543 is ALREADY being exploited in the Netherlands to breach organizations. Patch your systems NOW! #CitrixSecurity #CyberAttack https://t.co/0j6apknLd1

    @xcybersecnews

    16 Aug 2025

    56 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  11. Actively exploited CVE : CVE-2025-6543

    @transilienceai

    16 Aug 2025

    15 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  12. Actively exploited CVE : CVE-2025-6543

    @transilienceai

    15 Aug 2025

    17 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  13. 🚨 Nearly 7,000 Citrix NetScaler appliances vulnerable to critical flaws **CVE-2025-5777** and **CVE-2025-6543**. Remote access, data theft, and disruption of essential services. 🔗 [https://t.co/MpBm1GF3Rw\](https://t.co/Oqi0WELxNX) \#CyberSecurity #Canada #AgencePDN https

    @AgencePdn

    14 Aug 2025

    8 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  14. 🚨 Près de 7 000 Citrix NetScaler vulnérables aux failles critiques **CVE-2025-5777** et **CVE-2025-6543**. Accès à distance, vols de données et perturbations de services essentiels. 🔗 [https://t.co/MpBm1GF3Rw\](https://t.co/Oqi0WELxNX) #Cybersécurité #Canada #Agen

    @AgencePdn

    14 Aug 2025

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. The Dutch National Cyber Security Centre (NCSC-NL) has confirmed active cyberattacks targeting CVE-2025-6543, a critical vulnerability (CVSS 9.2) in Citrix NetScaler ADC and NetScaler Gateway. This flaw affects devices configured as a Gateway (VPN, ICA Proxy, CVPN, RDP Proxy) h

    @FORTBRIDGE

    14 Aug 2025

    60 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  16. NCSC-NL confirms active exploitation of CVE-2025-6543 in Citrix NetScaler across critical Dutch infrastructure

    @mahesh0x1

    14 Aug 2025

    14 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  17. 🚨 Critical Citrix NetScaler Zero-Day (CVE-2025-6543) actively exploited since May. Targets VPN/ICA/AAA configs. Attackers gain persistent access, add admins, wipe logs. Patch now, kill sessions, hunt .php shells, review outbound traffic. Assume compromise. https://t.co/VoBIes4

    @certcube

    13 Aug 2025

    59 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  18. 🚨 Your NetScaler might already be a backdoor 🚨 The Dutch NCSC states that CVE-2025-6543 (CVSS 9.2) has been exploited since May, resulting in web shells, log wiping, and critical sector attacks. 1️⃣ Patch ✅ 2️⃣ Kill sessions ✅ 3️⃣ Hunt IOCs ✅ Treat as c

    @secure_blink

    13 Aug 2025

    48 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  19. Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors https://t.co/SYz0huowo9

    @PVynckier

    13 Aug 2025

    198 Impressions

    5 Retweets

    5 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  20. Active exploitation of CVE-2025-6543 in Citrix NetScaler causes breaches in critical sectors. Erlang/OTP SSH and WinRAR vulnerabilities also targeted by threat actors, impacting multiple systems globally. #NetScaler #WinRAR #Netherlands https://t.co/7Ym6o1tqvR

    @TweetThreatNews

    13 Aug 2025

    119 Impressions

    1 Retweet

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  21. Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors #CISO https://t.co/prkDZeybi7 https://t.co/qKV8QujuxZ

    @compuchris

    12 Aug 2025

    43 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  22. The Netherlands' National Cyber Security Centre (NCSC) is warning that a critical Citrix NetScaler vulnerability tracked as CVE-2025-6543 was exploited to breach "critical organizations" in the country. https://t.co/HGNCbpzudB

    @blackwired32799

    12 Aug 2025

    61 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  23. Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors. CVE-2025-6543 (CVSS score: 9.2) is a critical security vulnerability in NetScaler ADC that results in unintended control flow and denial-of-service (DoS). https://t.co/jnQLI6GmDP https

    @riskigy

    12 Aug 2025

    35 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  24. Over 3,300 Citrix NetScaler devices remain unpatched against critical CVE-2025-5777 and CVE-2025-6543 flaws, enabling session hijacking, MFA bypass, and data theft with active global exploitation reported. #CitrixBleed #CISA #USA https://t.co/P9e0QPAK04

    @TweetThreatNews

    12 Aug 2025

    83 Impressions

    1 Retweet

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  25. Netscaler vulnerability was exploited as zero-day for nearly two months (CVE-2025-6543) https://t.co/AJc3LGM2Lv #HelpNetSecurity #Cybersecurity https://t.co/b1j2Orzrp4

    @PoseidonTPA

    12 Aug 2025

    23 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  26. Netscaler vulnerability was exploited as zero-day for nearly two months (CVE-2025-6543) https://t.co/UCqwlmdcKN

    @TheCyberSecHub

    12 Aug 2025

    643 Impressions

    2 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  27. #Cybersecurity Dutch NCSC Confirms Active Exploitation of #Citrix NetScaler CVE-2025-6543 in Critical Sectors https://t.co/JRStdyScoT

    @jos1727

    12 Aug 2025

    17 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  28. The CVE-2025-6543 flaw is a silent alarm for everyone. A memory overflow issue in Citrix NetScaler ADC is actively exploited, with a CVSS score of 9.8. Organizations need to PATCH NOW and terminate all sessions to halt any intrusions. https://t.co/N2x4SwMrva

    @The4n6Analyst

    12 Aug 2025

    32 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  29. Dutch #NCSC Confirms Active Exploitation of Citrix #NetScaler #CVE-2025-6543 in Critical Sectors https://t.co/EBVYY3UfEx

    @ScyScan

    12 Aug 2025

    25 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  30. Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors https://t.co/gQukLcGZPA #CyberSecurity

    @EpicPlain

    12 Aug 2025

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  31. Citrix Netscaler flaw CVE-2025-6543 exploited to breach orgs The Netherlands' National Cyber Security Centre (NCSC) is warning that a critical Citrix NetScaler vulnerability tracked : https://t.co/96sTTnQMAh #blog #digitpatrox

    @DigitpatroxOff

    12 Aug 2025

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  32. IN 🇳🇱 Hackers exploited critical vulnerability Cve-2025-6543 in Citrix NetscalerHaving broken several key organizations, including the prosecutor's office. Zero-Day used over 2️⃣ months before the patch. Citrix advises urgently updating the software and check the system

    @Hack_Your_Mom

    12 Aug 2025

    15 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  33. Citrix Vulnerability CVE-2025-6543 Exploited In Attacks #CISO https://t.co/6XZHAHPgcU

    @compuchris

    12 Aug 2025

    25 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  34. Hollanda Ulusal Siber Güvenlik Merkezi (NCSC-NL), Citrix NetScaler ADC ürünlerini etkileyen kritik bir güvenlik açığının (CVE-2025-6543) aktif olarak sömürüldüğüne dair önemli bir uyarı yayınladı. https://t.co/NUjf4c2Fhl

    @et2mas

    12 Aug 2025

    28 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  35. 🚨 Alerta de Segurança: A falha crítica CVE-2025-6543 no Citrix NetScaler já está sendo explorada contra setores estratégicos na Holanda. O bug, ativo como zero-day por dois meses antes da divulgação, permite controle remoto e negação de serviço. Admins, é hora de at

    @TechStartXYZ

    12 Aug 2025

    60 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  36. APT-style attacks exploited CVE-2025-6543 in Citrix NetScaler targeting Dutch critical organizations months before disclosure. Advanced evasion techniques allow persistent access, urging full forensic reviews. #CVE2025 #NetScaler #Netherlands https://t.co/vRtPw7WBXw

    @TweetThreatNews

    12 Aug 2025

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  37. Today's top 5 cybersecurity news - August 12, 2025 1. The Dutch National Cyber Security Centre (NCSC-NL) has confirmed active exploitation of a critical vulnerability, CVE-2025-6543, in Citrix NetScaler ADC products, targeting key organizations in the Netherlands. Source: The

    @NewsNerdie

    12 Aug 2025

    44 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  38. Citrix NetScaler vulnerability CVE-2025-6543 actively exploited in crucial industries https://t.co/J6CQFEfL5D

    @DemolisherDigi

    12 Aug 2025

    25 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  39. Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors https://t.co/CHS7CE1RJp https://t.co/ls4J6v2nBL

    @talentxfactor

    12 Aug 2025

    6 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  40. Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors - https://t.co/UXvyc7z577 #critical #cve-2025-6543 #confirms

    @cyntelnext

    12 Aug 2025

    46 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  41. Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors https://t.co/XBpd80wIiU

    @Dinosn

    12 Aug 2025

    1642 Impressions

    3 Retweets

    9 Likes

    2 Bookmarks

    0 Replies

    0 Quotes

  42. 📌 أكد المركز الوطني للأمن السيبراني الهولندي (NCSC-NL) وجود هجمات إلكترونية تستغل ثغرة أمنية خطيرة في منتجات Citrix NetScaler ADC، وهي CVE-2025-6543، لاستهداف مؤسسات حيوية

    @Cybercachear

    12 Aug 2025

    41 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  43. Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors https://t.co/2qiroLvz4S

    @molari999

    12 Aug 2025

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  44. The Hacker News - Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors https://t.co/hyzNdowyab

    @buzz_sec

    12 Aug 2025

    26 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  45. Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors https://t.co/lNxb9YIOe5

    @DemolisherDigi

    12 Aug 2025

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  46. Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors https://t.co/XeQLkqrWz9 https://t.co/f159X1VAJA

    @RigneySec

    12 Aug 2025

    7 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  47. Netherlands: Citrix NetScaler flaw CVE-2025-6543 exploited to breach orgs A critical Citrix NetScaler vulnerability-CVE-2025-6543-is being actively exploited to breach organizations in the Netherlands. Most.... @CosmicMetaX #Netz https://t.co/Kf5utz1Zhu

    @CosmicMetaX

    12 Aug 2025

    22 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  48. Netherlands: Citrix Netscaler flaw CVE-2025-6543 exploited to breach orgs The Netherlands' National Cyber Security Centre (NCSC) is warning that a critical Citrix NetScaler v #netherlands #citrix #netscaler #flaw #cve20256543 #exploited #breach #orgs https://t.co/aMnUuR0IeA

    @DConsultinguk

    12 Aug 2025

    11 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  49. ⚠️ Netherlands' NCSC warns that the critical Citrix NetScaler flaw CVE-2025-6543, a memory overflow, has been exploited as a zero-day since May 2025. Multiple vital organizations were breached, with attackers deploying stealthy web shells and erasing forensic traces. Patch

    @ransomnews

    12 Aug 2025

    876 Impressions

    4 Retweets

    12 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  50. ⚠️ Netherlands' NCSC warns that the critical Citrix NetScaler flaw CVE-2025-6543**,** a memory overflow, has been exploited as a zero-day since May 2025. Multiple vital organizations were breached, with attackers deploying stealthy web shells and erasing forensic traces. P

    @ransomnews

    12 Aug 2025

    7 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.