NetScaler ADC/Gateway: Improper Access Control on Management Interface
CVE-2025-5349 Published on June 17, 2025
NetScaler ADC and NetScaler Gateway - Improper access control on the NetScaler Management Interface
Improper access control on the NetScaler Management Interface in NetScaler ADC?and NetScaler Gateway
Weakness Type
Improper Validation of Specified Quantity in Input
The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.
Products Associated with CVE-2025-5349
stack.watch emails you whenever new vulnerabilities are published in Citrix Netscaler Application Delivery Controller or Citrix Netscaler Gateway. Just hit a watch button to start following.
Affected Versions
NetScaler ADC:- Version 14.1 and below 43.56 is affected.
- Version 13.1 and below 58.32 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.