CVE-2025-5777 - PatchNow

Data Source: CIRCL

Confidence: HIGH

Exploitation Method: DIRECT_NETWORK

CVE Published: 2025-06-17

Added to CISA KEV: 2025-07-10 23 DAYS BETWEEN CVE AND KEV

IMMEDIATE: Apply security patches - upgrade to NetScaler ADC/Gateway 14.1-43.56 or 13.1-58.32 or later
Monitor for indicators of compromise and unusual authentication patterns
CRITICAL priority patching due to active exploitation and CISA KEV listing

Check for CitrixBleed 2 exploitation even if you... - Help Net Security
With PoC exploits for CVE-2025-5777 (aka CitrixBleed 2) now public and reports of active exploitation of the flaw since mid-June, you should check whether your Citrix NetScaler ADC and/or Gateway instances have been probed and compromised by attackers.
Critical Citrix NetScaler bug fixed, upgrade ASAP! (CVE-2025-5777)
Citrix has fixed a critical vulnerability (CVE-2025-5777) in NetScaler ADC and Gateway that's reminiscent of the infamous CitrixBleed flaw.
CVE-2025-5777 Detection: A New Critical Vulnerability Dubbed ...
It addresses Initial Access tactics, with the primary technique being the Exploitation of Public-Facing Applications (T1190). Additionally ...
CitrixBleed 2 (CVE-2025-5777) Mitigation: A Guide to Detecting Exposed ...
To exploit the CVE-2025-5777 vulnerability, cyber attackers first identify NetScaler devices exposed on the internet.
CVE-2025-5777 Detail - NVD
CVE-2025-5777 Detail. Description. Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ...

🔴 CVE-2025-5777