Threat Intelligence / CVE / CVE-2025-5775
CVE-2025-5775
Citrix NetScaler ADC and Gateway information disclosure vulnerability. Allows unauthenticated remote attackers to access sensitive configuration data and credentials through exposed management endpoints.
CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Threats tracking this CVE
References
- https://nvd.nist.gov/vuln/detail/CVE-2025-5775
- https://support.citrix.com/article/CTX584986/netscaler-adc-and-gateway-security-bulletin-cve-2025-5775
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-5775
- https://www.mandiant.com/resources/blog/citrix-netscaler-exploitation-cve-2025-5775
Full detection coverage & IOCs for threats exploiting CVE-2025-5775 are available via the Threadlinqs MCP server (Purple tier). View plans →