Security Advisory

Citrix Product Security Update Advisory

  • Mar 30 2026
Citrix Product Security Update Advisory

overview

We have released security updates that address vulnerabilities in Citrix products. users of affected products are encouraged to update to the latest version.

affected products

CVE-2026-3055

NetScaler ADC Versions: 14.1-60.58 and earlier
NetScaler ADC Versions: 13.1-62.23 and earlier
NetScaler Gateway Version: 14.1-60.58 and earlier
NetScaler Gateway version: 13.1-62.23 or lower
NetScaler ADC FIPS version: 13.1-37.262 or lower
NetScaler ADC NDcPP version: less than 13.1-37.262

CVE-2026-4368

NetScaler ADC Version: 14.1-66.54
NetScaler Gateway version: 14.1-66.54

resolved Vulnerabilities

Memory overread vulnerability due to insufficient input validation in NetScaler ADC and NetScaler Gateway (CVE-2026-3055)
Race condition vulnerability in NetScaler ADC and NetScaler Gateway (CVE-2026-4368)

vulnerability patches

Vulnerability patches have been made available in the latest update. please follow the instructions on the reference site to update to the latest version of the vulnerability patch.

CVE-2026-3055

NetScaler ADC versions: 14.1-60.58 and later
NetScaler ADC version: 13.1-62.23 or later
NetScaler Gateway version: 14.1-60.58 or later
NetScaler Gateway version: 13.1-62.23 or later
NetScaler ADC FIPS version: 13.1-37.262 or later
NetScaler ADC NDcPP version: 13.1-37.262 or later

CVE-2026-4368

NetScaler ADC version: 14.1-66.59 or later
NetScaler Gateway version: 14.1-66.59 or later

references

[1] NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2026-3055 and CVE-2026-4368
https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX696300

Tags:
Previous Post

Next Post