Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 06 Aug 2025 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Citrix
Citrix netscaler Application Delivery Controller
Citrix netscaler Gateway
Weaknesses NVD-CWE-Other
CPEs cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*
cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*
cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:ndcpp:*:*:*
cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*
Vendors & Products Citrix
Citrix netscaler Application Delivery Controller
Citrix netscaler Gateway
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}


Tue, 17 Jun 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 17 Jun 2025 12:45:00 +0000

Type Values Removed Values Added
Description Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway
Title NetScaler ADC and NetScaler Gateway - Improper access control on the NetScaler Management Interface
Weaknesses CWE-1284
References
Metrics cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Citrix

Published:

Updated: 2025-06-26T03:55:22.631Z

Reserved: 2025-05-30T06:53:21.233Z

Link: CVE-2025-5349

cve-icon Vulnrichment

Updated: 2025-06-17T13:51:32.854Z

cve-icon NVD

Status : Analyzed

Published: 2025-06-17T13:15:21.377

Modified: 2025-08-06T17:50:04.630

Link: CVE-2025-5349

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.