CVE-2025-6543

Memory overflow vulnerability leading to unintended control flow and Denial of Service

CVSS 9.2 CRITICALEPSS 9.8%● KEVCWE-119

In short

A memory overflow flaw in NetScaler ADC and Gateway products allows attackers to crash the system or gain unauthorized control when these devices are configured as VPN gateways or authentication servers. This is a critical issue that can disrupt network access for many users.

Technical detail

A stack or heap buffer overflow vulnerability in NetScaler ADC/Gateway exists when configured as a VPN virtual server, ICA Proxy, CVPN, RDP Proxy, or AAA virtual server. The vulnerability enables remote attackers to trigger unintended control flow, resulting in denial of service or potential code execution. No authentication is required to trigger the condition.

Summary generated and translated by AI from the official description.

Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Affected products

NetScaler · ADC NetScaler · Gateway

public PoCs found — 3

githubgithub.com/grupooruss/Citrix-cve-2025-6543★ 5 githubgithub.com/abrewer251/CVE-2025-6543_CitrixNetScaler_PoC★ 5 githubgithub.com/lex1010/CVE-2025-6543★ 0

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694788 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-6543