CVE-2025-6543CRITICAL 9.8CISA KEVEPSS p94.9%

CVE-2025-6543Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability

Citrix / NetScaler ADC and Gateway

Description

Citrix NetScaler ADC and Gateway contain a buffer overflow vulnerability leading to unintended control flow and Denial of Service. NetScaler must be configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS9.76% probability of exploitation · percentile 94.9% · 2026-06-19T12:03:05Z
Published2025-06-25
Last modified2025-10-24

CISA KEV entry

Added to KEV: 2025-06-30

Underlying weaknesses· 1

CWE-119

References

  1. https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694788
  2. https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-6543

1

TypeTargetConfidenceTier
WeaknessImproper Restriction of Operations within the Bounds of a Memory Buffercwe-1190%live

(incoming)1

TypeTargetConfidenceTier
KEVEntryCitrix NetScaler ADC and Gateway Buffer Overflow Vulnerabilitykev-cve-2025-65430%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability
CVE
Citrix NetScaler ADC and Gateway Out-of-Bounds Read Vulnerability
CVE
Citrix NetScaler Memory Overflow Vulnerability
CVE
CVE-2025-7776
CVE
Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability
CVE
Citrix NetScaler Out-of-Bounds Read Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.