CVE-2026-3055: Citrix NetScaler Out-of-Bounds Read Vulnerability. Citrix

Citrix NetScaler Out-of-Bounds Read Vulnerability. Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability when configured as a SAML IDP leading to memory overread.

• CISA KEV-listed (remediation due 2026-04-02)
• EPSS 89.9% (99.6% percentile)

Browse the CVE database

Read the full analysis on IntelFusions