The vulnerability tracked as CVE-2025-5777 impacts Citrix NetScaler. It allows an unauthenticated attacker to read a portion of the appliance memory.
The server is vulnerable only if
it is configured on Gateway mode (VPN virtual server, ICA Proxy, CVPN, RDP Proxy), or AAA virtual server.
The following versions are impacted :
- NetScaler ADC and NetScaler Gateway 14.1-43.56 and later releases
- NetScaler ADC and NetScaler Gateway 13.1-58.32 and later releases of 13.1
- NetScaler ADC 13.1-FIPS and 13.1-NDcPP 13.1-37.235 and later releases of 13.1-FIPS and 13.1-NDcPP
- NetScaler ADC 12.1-FIPS 12.1-55.328 and later releases of 12.1-FIPS
Stormhield Network Security (SNS) appliance protects you from that attack, thanks to a dedicated IPS signature. To work efficiently on HTTPS traffic, it must be decrypted.
| ID | Name |
| http:client:data.90 | Exploitation of a Citrix Netscaler Memory Disclosure (CVE-2025-5777) |