CVE-2026-8655
8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:L
Summary
Multiple Memory overflow vulnerabilities in NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Service if NetScaler ADC is configured as an LB of type Oracle OR NetScaler ADC is configured as a DNS Proxy OR NetScaler ADC is configured as a DNS recursive resolver deployment
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NetScaler | ADC | 14.1 < 72.61 | affected |
| NetScaler | ADC | 13.1 < 63.18 | affected |
| NetScaler | ADC | 14.1 FIPS < 72.61 | affected |
| NetScaler | ADC | 13.1 FIPS and NDcPP < 37.272 | affected |
| NetScaler | Gateway | 14.1 < 72.61 | affected |
| NetScaler | Gateway | 13.1 < 63.18 | affected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.