# CVE-2026-3055

> CVE-2026-3055 is a pre-authentication out-of-bounds read (CWE-125) vulnerability in Citrix NetScaler ADC and NetScaler Gateway appliances configured as SAML Identity Providers. Insufficient input validation in the SAML IDP request processing path allows unauthenticated remote attackers to craft malicious requests triggering a memory overread condition, leaking sensitive data including active session tokens, authentication state data, certificates, private keys, and user credentials from adjacent memory regions. The vulnerability requires no authentication, no user interaction, and has low atta

- **CVSS:** 9.3 (CRITICAL)
- **EPSS:** 89.7%
- **CISA KEV:** yes
- **CWE:** CWE-125

Canonical: https://intel.threadlinqs.com/cve/CVE-2026-3055
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp