Memory overflow vulnerability leading to unpredictable or erroneous behavior and...

8.8 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:L

Description

Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) with PCoIP Profile bounded to it

Basic Information

ID CVE-2025-7776

Source Citrix

Published Aug 26, 2025 at 13:03

Affected Product

Vendor NetScaler

Product ADC

Version 14.1

Affected Versions NetScaler ADC 14.1
NetScaler ADC 13.1
NetScaler ADC 13.1 FIPS and NDcPP
NetScaler ADC 12.1 FIPS and NDcPP
NetScaler Gateway 14.1
NetScaler Gateway 13.1
NetScaler Gateway 13.1 FIPS and NDcPP
NetScaler Gateway 12.1 FIPS and NDcPP

CWE Classification

CWE-119

References

support.citrix.com /support-home/kbsearch/article

{
    "lastseen": "",
    "description": "Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service\u00a0in\u00a0NetScaler ADC and NetScaler Gateway when\u00a0NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) with PCoIP Profile bounded to it",
    "published": "2025-08-26T13:03:42.316Z",
    "modified": "2025-08-26T13:03:42.316Z",
    "type": "cve",
    "title": "Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service",
    "source": "Citrix",
    "references": "https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694938",
    "id": "CVE-2025-7776",
    "bulletinFamily": "",
    "cwe": [
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "NetScaler ADC 14.1\nNetScaler ADC 13.1\nNetScaler ADC 13.1 FIPS and NDcPP\nNetScaler ADC 12.1 FIPS and NDcPP\nNetScaler Gateway 14.1\nNetScaler Gateway 13.1\nNetScaler Gateway 13.1 FIPS and NDcPP\nNetScaler Gateway 12.1 FIPS and NDcPP",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:L",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ADC",
    "version": "14.1",
    "vendor": "NetScaler",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service_CVE-2025-7776