US EditionCitrixBleed 2 Flaws Are Officially Here - so Get Patching or Leave Your Systems at Risk
- Citrix disclosed on June 17 a critical 9.3-severity vulnerability CVE-2025-5777, dubbed CitrixBleed 2, affecting NetScaler ADC and Gateway appliances.
- The flaw arises from insufficient input validation that allows unauthenticated attackers to hijack user sessions and extract sensitive data, prompting Citrix to urge immediate patching.
- Shadowserver has identified that approximately 2,100 devices remain exposed to this vulnerability, while the exploit is capable of targeting a wide range of API interfaces—more than 170—and retrieving upwards of 150 confidential files, including administrator credentials and VPN session information.
- Cybersecurity firm ReliaQuest indicated with moderate confidence that this flaw is currently being leveraged by attackers to establish initial footholds within targeted networks, with the exploit valued at $70,000 and typically requiring just one click on devices running Android 15 or later.
- This vulnerability and related high-severity flaws suggest a pressing risk for IT security teams, emphasizing the need for rapid patch deployment and enhanced monitoring of Citrix NetScaler appliances.
11 Articles
11 Articles
Over 1,200 Citrix servers unpatched against critical auth bypass flaw
Over 1,200 Citrix NetScaler ADC and NetScaler Gateway appliances exposed online are unpatched against a critical vulnerability believed to be actively exploited, allowing threat actors to bypass authentication by hijacking user sessions.
CitrixBleed 2 flaws are officially here - so get patching or leave your systems at risk - WorldNL Magazine
(Image credit: Shutterstock) Citrix disclosed patching a critical-severity bug in Citrix NetScaler ADC and Gateway instancesIndependent researchers dub it "CitrixBleed 2" due to its similiarities to the 2023 flawUsers are advised to patch up ASAPHackers are actively exploiting a critical-severity vulnerability in Citrix NetScaler ADC and Gateway instances to hijack user sessions and gain access to targeted environments, the company has revealed…
SCIENCE & TECH: CitrixBleed 2 flaws are officially here – so get patching or leave your systems at risk – U-S-NEWS.COM
Citrix disclosed patching a critical-severity bug in Citrix NetScaler ADC and Gateway instances Independent researchers dub it “CitrixBleed 2” due to its similiarities to the 2023 flaw Users are advised to patch up ASAP Hackers are actively exploiting a critical-severity vulnerability in Citrix NetScaler ADC and Gateway instances to hijack user sessions and gain access to targeted environments, the company has revealed. The bug is described as a…
Attacks involving critical Citrix NetScaler bug underway
Threat actors were observed by ReliaQuest to have been leveraging the recently disclosed critical Citrix NetScaler Gateway vulnerability, tracked as CVE-2025-5777, to facilitate initial systems compromise, according to Cybersecurity Dive. Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor. Enroll Now and Save 10%: Coupon Code MWNEWS10 Note: Affiliate link –…
CitrixBleed 2 might be actively exploited (CVE-2025-5777) - Help Net Security
While Citrix has observed some instances where CVE-2025-6543 has been exploited on vulnerable NetScaler networking appliances, the company still says that they don’t have evidence of exploitation for CVE-2025-5349 or CVE-2025-5777, both of which have been patched earlier this month. CVE-2025-5777, in particular, has captured the attention of infosec professionals due to its similarity to CVE-2023-4966, aka CitrixBleed. Consequently, CVE-2025-577…
Coverage Details
Bias Distribution
- 100% of the sources are Center
To view factuality data please Upgrade to Premium
