NetScaler Console & SDX Arbitrary File Read
CVE-2025-4365 Published on June 17, 2025
NetScaler Console and NetScaler SDX (SVM) - Arbitrary file read
Arbitrary file read in NetScaler Console and NetScaler SDX (SVM)
Weakness Type
Improper Validation of Specified Quantity in Input
The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.
Products Associated with CVE-2025-4365
stack.watch emails you whenever new vulnerabilities are published in Citrix Netscaler Console or Citrix Netscaler Sdx. Just hit a watch button to start following.
Affected Versions
NetScaler Console:- Version 14.1 and below 47.46 is affected.
- Version 13.1 and below 58.32 is affected.
- Version 14.1 and below 47.46 is affected.
- Version 13.1 and below 58.32 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.