CVE-2025-6543: Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability

CVE ID

CVE-2025-6543

Vulnerability Name

Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability

• Project: Citrix
• Product: NetScaler ADC and Gateway

Date

• Date Added: 2025-06-30
• Due Date: 2025-07-21

Description

Citrix NetScaler ADC and Gateway contain a buffer overflow vulnerability leading to unintended control flow and Denial of Service. NetScaler must be configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694788 ; https://www.netscaler.com/blog/news/netscaler-critical-security-updates-for-cve-2025-6543-and-cve-2025-5777/ ; https://nvd.nist.gov/vuln/detail/CVE-2025-6543

Related Security News

• Citrix Patches Three NetScaler Flaws, Confirms Active Exploitation of CVE-2025-7775
• Over 3,000 NetScaler devices left unpatched against CitrixBleed 2 bug
• Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors
• Netherlands: Citrix Netscaler flaw CVE-2025-6543 exploited to breach orgs
• CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises
• CISA Adds Four Critical Vulnerabilities to KEV Catalog Due to Active Exploitation
• Citrix warns of login issues after NetScaler auth bypass patch

More CVEs Info

Common Vulnerabilities & Exposures (CVE) List