Improper access control on the NetScaler Management Interface_CVE-2025-8424

8.7 / 10

HIGH

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Description

Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway when an attacker can get access to the appliance NSIP, Cluster Management IP or local GSLB Site IP or SNIP with Management Access

Basic Information

ID CVE-2025-8424

Source Citrix

Published Aug 26, 2025 at 13:11

Affected Product

Vendor NetScaler

Product ADC

Version 14.1

Affected Versions NetScaler ADC 14.1
NetScaler ADC 13.1
NetScaler ADC 13.1 FIPS and NDcPP
NetScaler ADC 12.1 FIPS and NDcPP
NetScaler Gateway 14.1
NetScaler Gateway 13.1
NetScaler Gateway 13.1 FIPS and NDcPP
NetScaler Gateway 12.1 FIPS and NDcPP

CWE Classification

CWE-1284

References

support.citrix.com /support-home/kbsearch/article

{
    "lastseen": "",
    "description": "Improper access control on the NetScaler Management Interface in NetScaler ADC\u202fand NetScaler Gateway when an attacker can get access to the appliance NSIP, Cluster Management IP or local GSLB Site IP or SNIP with Management Access",
    "published": "2025-08-26T13:11:10.822Z",
    "modified": "2025-08-26T13:11:10.822Z",
    "type": "cve",
    "title": "Improper access control on the NetScaler Management Interface",
    "source": "Citrix",
    "references": "https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694938",
    "id": "CVE-2025-8424",
    "bulletinFamily": "",
    "cwe": [
        "CWE-1284"
    ],
    "cvelist": null,
    "sourceData": "NetScaler ADC 14.1\nNetScaler ADC 13.1\nNetScaler ADC 13.1 FIPS and NDcPP\nNetScaler ADC 12.1 FIPS and NDcPP\nNetScaler Gateway 14.1\nNetScaler Gateway 13.1\nNetScaler Gateway 13.1 FIPS and NDcPP\nNetScaler Gateway 12.1 FIPS and NDcPP",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ADC",
    "version": "14.1",
    "vendor": "NetScaler",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}