ThreatCluster

Multiple Memory Overflow Vulnerabilities in NetScaler ADC and Gateway

First seen 2 Jul 2026, 04:33 UTC nvd.nist.gov 85% similarity 65
Share:

Article Content

Browse articles
ThreatCluster

Two critical memory overflow vulnerabilities have been identified in NetScaler ADC and NetScaler Gateway, both published on July 2, 2026. CVE-2026-8655 affects configurations as an Oracle load balancer, DNS proxy, or DNS recursive resolver, leading to unpredictable behavior and potential Denial of Service (DoS). CVE-2026-8452 impacts configurations as a Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server, also resulting in similar issues. These vulnerabilities could allow attackers to exploit the affected systems, causing significant disruptions. Organizations using these configurations are urged to assess their systems for vulnerabilities and apply necessary mitigations. The current status is that both vulnerabilities are acknowledged, but no patches have been mentioned yet.

Key Points: • CVE-2026-8655 and CVE-2026-8452 are critical memory overflow vulnerabilities in NetScaler. • Affected systems include NetScaler ADC and Gateway under specific configurations. • Denial of Service is a potential outcome if these vulnerabilities are exploited.

ThreatCluster AI

Timeline

2026-07-02
CVE-2026-8655 published
Memory overflow vulnerabilities in NetScaler ADC and Gateway were disclosed, affecting specific configurations.
nvd.nist.gov
2026-07-02
CVE-2026-8452 published
Another memory overflow vulnerability in NetScaler ADC and Gateway was disclosed, impacting different configurations.
nvd.nist.gov

Community

Browse all →