A not too long ago disclosed vital safety flaw impacting Citrix NetScaler ADC and NetScaler Gateway is witnessing energetic reconnaissance exercise, in keeping with Defused Cyber and watchTowr.
The vulnerability, CVE-2026-3055 (CVSS rating: 9.3), refers to a case of inadequate enter validation resulting in reminiscence overread, which an attacker might exploit to leak probably delicate info.
Per Citrix, profitable exploitation of the flaw hinges on the equipment being configured as a SAML Identification Supplier (SAML IDP).
“We at the moment are observing auth technique fingerprinting exercise in opposition to NetScaler ADC/Gateway within the wild,” Defused Cyber mentioned in a submit on X. “Attackers are probing /cgi/GetAuthMethods to enumerate enabled authentication flows in our Citrix honeypots.”
That is seemingly an try on the a part of risk actors to find out if NetScaler ADC and NetScaler Gateway are certainly configured as a SAML IDP.
In the same warning, watchTowr mentioned it has detected energetic reconnaissance in opposition to NetScaler cases in its honeypot community, elevating the likelihood that in-the-wild exploitation can occur anytime.
“Organizations working affected Citrix NetScaler variations in affected configurations must drop instruments and patch instantly,” the corporate mentioned. “When attacker reconnaissance shifts to energetic exploitation, the window to reply will evaporate.”
The vulnerability impacts NetScaler ADC and NetScaler Gateway variations 14.1 earlier than 14.1-66.59 and 13.1 earlier than 13.1-62.23, in addition to NetScaler ADC 13.1-FIPS and 13.1-NDcPP earlier than 13.1-37.262.
Lately, a variety of safety vulnerabilities affecting NetScaler have come beneath energetic exploitation within the wild. These embody CVE-2023-4966 (Citrix Bleed), CVE-2025-5777 (Citrix Bleed 2), CVE-2025-6543, and CVE-2025-7775.
It is subsequently essential that customers transfer shortly to the most recent updates as quickly as doable to remain protected, as it is a matter of not if, however when.
Elevate your perspective with NextTech Information, the place innovation meets perception.
Uncover the most recent breakthroughs, get unique updates, and join with a world community of future-focused thinkers.
Unlock tomorrow’s developments at present: learn extra, subscribe to our e-newsletter, and grow to be a part of the NextTech group at NextTech-news.com
