CVE-2026-3055
Insufficient input validation leading to memory overread
In short
NetScaler ADC and NetScaler Gateway have a flaw in how they validate user input when acting as a SAML identity provider. An attacker can send specially crafted requests that cause the system to read beyond intended memory boundaries, potentially exposing sensitive data.
Technical detail
Insufficient input validation in the SAML IDP implementation allows an unauthenticated or low-privileged attacker to trigger an out-of-bounds memory read via malformed SAML requests. The vulnerability enables information disclosure of adjacent memory contents without requiring code execution, with a CVSS score of 9.3 indicating critical severity.
Summary generated and translated by AI from the official description.
Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overread
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://labs.watchtowr.com/please-we-beg-just-one-weekend-free-of-appliances-citrix-netscaler-cve-2026-3055-memory-overread-part-2/https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX696300https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-3055