CVE-2025-7775

Summary

Memory overflow vulnerability leading to Remote Code Execution and/or Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server

(OR)

NetScaler ADC and NetScaler Gateway 13.1, 14.1, 13.1-FIPS and NDcPP: LB virtual servers of type (HTTP, SSL or HTTP_QUIC) bound with IPv6 services or servicegroups bound with IPv6 servers

(OR)

NetScaler ADC and NetScaler Gateway 13.1, 14.1, 13.1-FIPS and NDcPP: LB virtual servers of type (HTTP, SSL or HTTP_QUIC) bound with DBS IPv6 services or servicegroups bound with IPv6 DBS servers

(OR)

CR virtual server with type HDX

Affected Software

VendorProductVersion RangeStatus
NetScalerADC14.1 < 47.48affected
NetScalerADC13.1 < 59.22affected
NetScalerADC13.1 FIPS and NDcPP < 37.241affected
NetScalerADC12.1 FIPS and NDcPP < 55.330affected
NetScalerGateway14.1 < 47.48affected
NetScalerGateway13.1 < 59.22affected
NetScalerGateway13.1 FIPS and NDcPP < 37.241affected
NetScalerGateway12.1 FIPS and NDcPP < 55.330affected

Weaknesses

  • CWE-119: CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References