CVE-2025-5349HIGH 8.8EPSS p88.2%

CVE-2025-5349CVE-2025-5349

Description

Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS3.65% probability of exploitation · percentile 88.2% · 2026-06-19T12:03:05Z
Published2025-06-17
Last modified2025-08-06

Underlying weaknesses· 1

CWE-1284

References

  1. https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX693420

1

TypeTargetConfidenceTier
WeaknessImproper Validation of Specified Quantity in Inputcwe-12840%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability
CVE
CVE-2025-7776
CVE
Citrix NetScaler Memory Overflow Vulnerability
CVE
Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability
CVE
CVE-2025-64656
CVE
Citrix NetScaler ADC and Gateway Out-of-Bounds Read Vulnerability
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.