Citrix Archives • Daily CyberSecurity

The Shittrix Disclosure: 89 Flaws Collapse 20 Years of Trust in Citrix and XCP-ng Shittrix Disclosure Hypervisor Vulnerabilities

The Shittrix Disclosure: 89 Flaws Collapse 20 Years of Trust in Citrix and XCP-ng

Do Son April 29, 2026

Independent security researcher Jakob Wolffhechel has publicly disclosed 89 vulnerabilities impacting Citrix XenServer/Hypervisor and its open-source counterpart,...

CISA Issues Emergency Mandate as Critical 9.3 NetScaler Flaw “Bleeds” Admin Sessions Citrix NetScaler Vulnerability CVE-2026-3055

CISA Issues Emergency Mandate as Critical 9.3 NetScaler Flaw “Bleeds” Admin Sessions

Do Son March 31, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical vulnerability impacting Citrix NetScaler ADC...

Memory Leaks and Mixed Sessions: NetScaler’s Critical 9.3 CVSS Flaw Demands Immediate Action NetScaler Vulnerability CVE-2026-3055 Citrix VDA, Privilege Escalation NetScaler Vulnerabilities, Access Bypass CVE-2024-8534 and CVE-2024-8535

NetScaler Vulnerability CVE-2026-3055 Citrix VDA, Privilege Escalation NetScaler Vulnerabilities, Access Bypass CVE-2024-8534 and CVE-2024-8535

Memory Leaks and Mixed Sessions: NetScaler’s Critical 9.3 CVSS Flaw Demands Immediate Action

Do Son March 24, 2026

On March 23, 2026, Cloud Software Group released a high-priority security bulletin addressing two vulnerabilities in NetScaler...

URGENT: NetScaler Zero-Day CVE-2025-7775 Under Active Attack NetScaler, CVE-2025-7775

URGENT: NetScaler Zero-Day CVE-2025-7775 Under Active Attack

Do Son August 26, 2025

The Cloud Software Group (CSG) has released urgent security updates to address three high-severity vulnerabilities affecting NetScaler...

CISA Adds Citrix and Git Flaws to Known Exploited Vulnerabilities Catalog n8n RCE Vulnerability CVE-2025-68613 CISA KEV WinRAR Zero-Day, Cloud Files UAF OpenPLC ScadaBR, CVE-2021-26829 CISA KEV, Gladinet LFI RCE XWiki RCE, VMware EoP CISA KEV CISA, Known Exploited Vulnerabilities CVE-2020-2883 CISA, Trend Micro

n8n RCE Vulnerability CVE-2025-68613 CISA KEV WinRAR Zero-Day, Cloud Files UAF OpenPLC ScadaBR, CVE-2021-26829 CISA KEV, Gladinet LFI RCE XWiki RCE, VMware EoP CISA KEV CISA, Known Exploited Vulnerabilities CVE-2020-2883 CISA, Trend Micro

CISA Adds Citrix and Git Flaws to Known Exploited Vulnerabilities Catalog

Do Son August 26, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has added three new vulnerabilities to its Known Exploited Vulnerabilities...

CitrixBleed 2: CVE-2025-5777 Joins CISA’s KEV Catalog Amid Active Exploitation Storm, PoC Available CitrixBleed 2, Session Hijacking

CitrixBleed 2: CVE-2025-5777 Joins CISA’s KEV Catalog Amid Active Exploitation Storm, PoC Available

Do Son July 11, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added CVE-2025-5777 to its Known Exploited Vulnerabilities...

Citrix Warns of Privilege Escalation Vulnerability in Windows Virtual Delivery Agent (CVE-2025-6759) NetScaler Vulnerability CVE-2026-3055 Citrix VDA, Privilege Escalation NetScaler Vulnerabilities, Access Bypass CVE-2024-8534 and CVE-2024-8535

Citrix Warns of Privilege Escalation Vulnerability in Windows Virtual Delivery Agent (CVE-2025-6759)

Do Son July 9, 2025

Citrix has issued a security advisory concerning a newly identified local privilege escalation vulnerability affecting its Windows...

Check Point VPN vulnerability exploited in the wild Check Point VPN exploit CVE-2026-50751 zero-day Checkmarx Breach Supply Chain Attack Ivanti EPMM RCE CVE-2026-1281 Modular DS Vulnerability CVE-2026-23550 D-Link RCE Vulnerability CVE-2026-0625 Christmas 2025 GreyNoise Campaign, Japan-Based Initial Access Broker React2Shell Zero-Day, APT Active Exploitation WordPress vulnerability, authentication bypass FreePBX, zero-day Trend Micro Apex One, Remote Code Execution BitoPro Hack, Crypto Theft UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

Urgent Citrix NetScaler Alert: Critical Memory Overflow Flaw (CVE-2025-6543, CVSS 9.2) Actively Exploited on 2,100+ Unpatched Appliances

Do Son July 1, 2025

A critical security flaw tracked as CVE-2025-6543 is being actively exploited in the wild, prompting urgent warnings...

Citrix Bleed 2: ReliaQuest Warns of Active Exploitation in NetScaler Gateway Vulnerability Citrix Bleed 2, Session Hijacking

Citrix Bleed 2: ReliaQuest Warns of Active Exploitation in NetScaler Gateway Vulnerability

Do Son June 30, 2025

A newly discovered vulnerability—CVE-2025-5777, now dubbed Citrix Bleed 2—is raising serious security alarms. According to ReliaQuest, attackers...

Urgent Citrix NetScaler Alert: Critical Memory Overflow Flaw (CVE-2025-6543, CVSS 9.2) Actively Exploited Citrix NetScaler, Critical Vulnerability

Citrix NetScaler, Critical Vulnerability

Urgent Citrix NetScaler Alert: Critical Memory Overflow Flaw (CVE-2025-6543, CVSS 9.2) Actively Exploited

Do Son June 27, 2025

Citrix has issued a critical advisory for CVE-2025-6543, a memory overflow vulnerability that impacts NetScaler ADC (formerly...

Critical NetScaler Flaws Allow Access Control Bypass & Memory Overread NetScaler Vulnerability CVE-2026-3055 Citrix VDA, Privilege Escalation NetScaler Vulnerabilities, Access Bypass CVE-2024-8534 and CVE-2024-8535

Critical NetScaler Flaws Allow Access Control Bypass & Memory Overread

Do Son June 18, 2025

The Cloud Software Group has issued a security bulletin addressing two critical vulnerabilities in NetScaler ADC (formerly...

Citrix Alert: XenServer VM Tools Flaws Risk Windows VM Compromise Citrix XenServer vulnerability Windows VM security

Citrix Alert: XenServer VM Tools Flaws Risk Windows VM Compromise

Do Son May 28, 2025

Citrix has issued a high-severity security update addressing three newly identified vulnerabilities that affect XenServer VM Tools...

CVE-2024-12284 in NetScaler Console Exposes Systems to Unauthorized Command Execution CVE-2023-6548 vulnerability CVE-2024-12284

CVE-2024-12284 in NetScaler Console Exposes Systems to Unauthorized Command Execution

Do Son February 19, 2025

Cloud Software Group has released a security bulletin addressing a high-severity vulnerability in its NetScaler Console and...

Citrix Alerts on Global Password Spraying Campaigns Targeting NetScaler Appliances NetScaler Password Spraying

Citrix Alerts on Global Password Spraying Campaigns Targeting NetScaler Appliances

Do Son December 15, 2024

Citrix has issued an advisory highlighting an increase in password spraying attacks aimed at NetScaler appliances worldwide....

NHS England Issues Cyber Alert for Exploited CVE-2023-6548 Vulnerability in NetScaler Devices CVE-2023-6548 vulnerability CVE-2024-12284

NHS England Issues Cyber Alert for Exploited CVE-2023-6548 Vulnerability in NetScaler Devices

Do Son July 19, 2024

The NHS England National Cyber Security Operations Centre (CSOC) has issued a cyber alert following new intelligence...

Citrix Issues Critical Security Advisory for NetScaler: CVE-2024-6235 and CVE-2024-6236 CVE-2024-6235 & CVE-2024-6236

Citrix Issues Critical Security Advisory for NetScaler: CVE-2024-6235 and CVE-2024-6236

Do Son July 9, 2024

Cloud Software Group, the entity behind Citrix products, has issued a critical security advisory warning users of...

Citrix Urges Mac Users to Patch Workspace App Against Privilege Escalation Flaw – CVE-2024-5027

Do Son May 28, 2024

Cloud Software Group, the entity behind Citrix products, has issued a security advisory warning Mac users of...

Citrix uberAgent Update for Privilege Escalation Vulnerability (CVE-2024-3902)

Do Son April 21, 2024

Citrix has released an urgent security advisory regarding a vulnerability (CVE-2024-3902) discovered in its uberAgent software. This...

Mandiant Exposes Ongoing Exploits Against Citrix Users Citrix Exploits

Mandiant Exposes Ongoing Exploits Against Citrix Users

Do Son November 2, 2023

Experts from the cybersecurity firm Mandiant have discerned an active exploitation of a vulnerability within Citrix’s NetScaler...

Critical Citrix Vulnerabilities Expose Sensitive Data, Cause DoS CVE-2023-4966

Critical Citrix Vulnerabilities Expose Sensitive Data, Cause DoS

Do Son October 10, 2023

A critical vulnerability in Citrix’s NetScaler ADC and NetScaler Gateway devices could lead to the exposure of...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

Citrix

CISA Issues Emergency Mandate as Critical 9.3 NetScaler Flaw “Bleeds” Admin Sessions

URGENT: NetScaler Zero-Day CVE-2025-7775 Under Active Attack

CISA Adds Citrix and Git Flaws to Known Exploited Vulnerabilities Catalog

CitrixBleed 2: CVE-2025-5777 Joins CISA’s KEV Catalog Amid Active Exploitation Storm, PoC Available

Citrix Warns of Privilege Escalation Vulnerability in Windows Virtual Delivery Agent (CVE-2025-6759)

Urgent Citrix NetScaler Alert: Critical Memory Overflow Flaw (CVE-2025-6543, CVSS 9.2) Actively Exploited on 2,100+ Unpatched Appliances

Citrix Bleed 2: ReliaQuest Warns of Active Exploitation in NetScaler Gateway Vulnerability

Urgent Citrix NetScaler Alert: Critical Memory Overflow Flaw (CVE-2025-6543, CVSS 9.2) Actively Exploited

Citrix Alert: XenServer VM Tools Flaws Risk Windows VM Compromise

CVE-2024-12284 in NetScaler Console Exposes Systems to Unauthorized Command Execution

Citrix Alerts on Global Password Spraying Campaigns Targeting NetScaler Appliances

NHS England Issues Cyber Alert for Exploited CVE-2023-6548 Vulnerability in NetScaler Devices

Citrix Issues Critical Security Advisory for NetScaler: CVE-2024-6235 and CVE-2024-6236

Citrix Urges Mac Users to Patch Workspace App Against Privilege Escalation Flaw – CVE-2024-5027

Citrix uberAgent Update for Privilege Escalation Vulnerability (CVE-2024-3902)

Mandiant Exposes Ongoing Exploits Against Citrix Users

Critical Citrix Vulnerabilities Expose Sensitive Data, Cause DoS