← ExploitWatch
HomeExploited Vulnerabilities

CVE-2026-3055 — Actively Exploited: NetScaler (Citrix)

Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability when configured as a SAML IDP leading to memory overread.

CVE IDCVE-2026-3055
VendorCitrix
ProductNetScaler
Vulnerability nameCitrix NetScaler Out-of-Bounds Read Vulnerability
Date added2026-03-30
Remediation due2026-04-02
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
DescriptionCitrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability when configured as a SAML IDP leading to memory overread.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →