CVE-2026-3055: Citrix NetScaler Out-of-Bounds Read Vulnerability

Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overread
CVE-2026-3055CVSS 9.3CISA KEVKnown Exploited

CVE-2026-3055: Citrix NetScaler Out-of-Bounds Read Vulnerability

Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overread

CVSS
9.3 CRITICAL
EPSS
99.66%
Known exploited
yes
Product
NetScaler

What is known

Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overread

Sources