Critical Vulnerabilities in Citrix NetScaler ADC and Gateway Require Immediate Patching

Critical Vulnerabilities in Citrix NetScaler ADC and Gateway Require Immediate Patching

First seen 23 Mar 2026, 17:59 UTC Digital.Nhs.UkCybersecuritynewsHeise.DeGround.NewsSecurityaffairs.Co+13 89% similarity 72.9

Article Content

Browse articles
ThreatCluster

Cloud Software Group has identified and patched two critical vulnerabilities in Citrix NetScaler ADC and Gateway products. The vulnerabilities, tracked as CVE-2026-3055, allow unauthenticated remote attackers to exploit memory overreads and potentially leak sensitive data. Organizations using these systems are urged to apply the updates immediately to mitigate risks. The vulnerabilities were discovered during an internal review and have been addressed in a security bulletin issued on March 23, 2026. The CVSS score for CVE-2026-3055 is 9.3, indicating a high level of severity. Affected organizations should refer to Citrix Security Bulletin CTX696300 for detailed information and remediation steps. The urgency of the situation is underscored by the potential for exploitation leading to serious data breaches. Administrators are advised to prioritize these updates to protect their systems from possible attacks.

Key Points: • Two critical vulnerabilities in Citrix NetScaler ADC and Gateway require immediate updates. • CVE-2026-3055 has a CVSS score of 9.3, indicating a severe risk of data leakage. • Organizations are advised to consult Citrix Security Bulletin CTX696300 for remediation guidance.

ThreatCluster AI

Timeline

2026-03-23
CVE-2026-3055 published and security bulletin released
2026-03-23
Citrix issues patches for identified vulnerabilities
2026-03-24
Security articles published urging immediate action

Community

Browse all →