Tag
critical
threat
Critical Vulnerabilities in NetScaler ADC and Gateway Allow Sensitive Data Exposure and Session Hijacking
2 rules 1 TTP 2 CVEsUnauthenticated attackers can exploit CVE-2026-3055 (out-of-bounds read) to exfiltrate sensitive data from NetScaler ADC and Gateway, while CVE-2026-4368 (race condition) enables user session hijacking, necessitating immediate patching and enhanced monitoring.
exploited
netscaler
cve-2026-3055
cve-2026-4368
out-of-bounds read
race condition
memory corruption
session hijacking
2r
1t
2c
critical
threat
Citrix NetScaler ADC and Gateway CVE-2026-3055 Exploitation
2 rules 3 TTPsThreat actors are actively exploiting CVE-2026-3055, a critical memory overread vulnerability in Citrix NetScaler ADC and NetScaler Gateway appliances configured as a SAML identity provider (IDP), to extract sensitive information, including authenticated administrative session IDs, potentially leading to full system takeover.
citrix
netscaler
cve-2026-3055
memory-overread
information-disclosure
2r
3t