← All stories
● Covered by 2 sources Β· 3 reportsMedium impact

Citrix Patches Six Critical NetScaler Vulnerabilities, Including HTTP/2 Bomb

πŸ”„ Updated 3h ago β€” new reporting from SecurityWeek
Aggregated by BrevFeed security Β· updated 4h ago
πŸ”– Save

Citrix released patches for six vulnerabilities in NetScaler ADC and Gateway, including a critical HTTP/2 Bomb exploit. These flaws, affecting versions 14.1 and 13.1, pose severe risks like denial-of-service attacks and data breaches. Organizations using these configurations should urgently update to protect against active threats.

Key points

Overview of Vulnerabilities

Citrix has issued security patches to address six critical vulnerabilities in the NetScaler ADC and Gateway products. The key vulnerabilities include a high-profile HTTP/2 Bomb exploit and the CVE-2026-8451 issue, colloquially known as CitrixBleed. These could lead to denial-of-service attacks and unauthorized data access, posing serious security threats to affected systems.

Key Vulnerabilities Addressed

The vulnerabilities span various issues such as memory overflows, unauthorized file reads, and denial-of-service attacks. They include the CitrixBleed-like vulnerability, CVE-2026-8451, exploitable without authentication on systems configured as SAML IDP, and the CVE-2026-8452, a memory overflow flaw. The HTTP/2 Bomb (CVE-2026-49975) is another severe threat aimed at overloading web servers.

Citrix addressed these vulnerabilities in their NetScaler ADC and Gateway versions, specifically 14.1-72.61 and 13.1-63.18.

Urgency for Security Updates

The release highlights the urgency for all organizations using these NetScaler configurations to implement the updates immediately. Exploits like the CitrixBleed vulnerability were observed being used within 24 hours post-disclosure, signaling an active attack landscape.

Potential Impact and Recommendations

These vulnerabilities' exploitation can lead to severe business impacts, such as service disruptions and sensitive data leaks. It is thus critical for organizations to evaluate their current deployments, identify vulnerable configurations, and apply the patched versions to safeguard their infrastructures against potential attacks.

✨ This summary was generated by AI from the outlets' reporting listed below. It is not independently verified and may contain errors β€” check the original sources. How BrevFeed works β†’

How outlets covered it

The CitrixBleed vulnerability, tracked as CVE-2026-8451, was exploited less than 24 hours after its public disclosure on June 30. The vulnerability allows memory disclosure without authentication on NetScaler appliances configured as SAML IDP, posing significant risk to affected organizations.

Citrix released updates for NetScaler ADC and Gateway, addressing six vulnerabilities including the HTTP/2 Bomb attack. These weaknesses could allow denial-of-service attacks and potential data leaks, making it critical for affected organizations to apply the patches.

Citrix issued security updates for NetScaler ADC and Gateway to address six vulnerabilities that could allow arbitrary file reads or denial-of-service attacks. These flaws, with CVSS scores up to 8.8, pose significant risks for systems configured for specific roles like SAML IDP or DNS Proxy.