CVE-2025-5349— NetScaler ADC and NetScaler Gateway - Improper access control on the NetScaler Management Interface
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-5349
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
NetScaler ADC and NetScaler Gateway - Improper access control on the NetScaler Management Interface
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
CWE-1284
Source: NVD (National Vulnerability Database)
Vulnerability Title
Citrix NetScaler ADC和Citrix NetScaler Gateway 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Citrix NetScaler ADC和Citrix NetScaler Gateway都是美国Citrix公司的产品。Citrix NetScaler ADC是一个应用程序交付和安全性平台。Citrix NetScaler Gateway是一种安全远程访问的解决方案。 Citrix NetScaler ADC和Citrix NetScaler Gateway存在安全漏洞,该漏洞源于NetScaler Management Interface访问控制不当。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2025-5349
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | None | https://github.com/olimpiofreitas/CVE-2025-5349-Scanner | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-5349
请登录查看更多情报信息。
Same Patch Batch · NetScaler · 2025-06-17 · 3 CVEs total
| CVE-2025-5777 | NetScaler ADC and NetScaler Gateway - Insufficient input validation leading to memory over | |
| CVE-2025-4365 | NetScaler Console and NetScaler SDX (SVM) - Arbitrary file read |
IV. Related Vulnerabilities
Same product: ADC
- CVE-2026-3055
Insufficient input validation leading to memory overread - CVE-2026-4368
Race Condition leading to User Session Mixup - CVE-2025-12101
Cross-Site Scripting (XSS) - CVE-2025-8424
Improper access control on the NetScaler Management Interfac - CVE-2025-7776
Memory overflow vulnerability leading to unpredictable or er
Same vendor: NetScaler
- CVE-2026-3055
Insufficient input validation leading to memory overread - CVE-2026-4368
Race Condition leading to User Session Mixup - CVE-2025-12101
Cross-Site Scripting (XSS) - CVE-2025-8424
Improper access control on the NetScaler Management Interfac - CVE-2025-7776
Memory overflow vulnerability leading to unpredictable or er
Same weakness: CWE-1284
- CVE-2026-25863
Conditional Fields for Contact Form 7 < 2.7.3 DoS via Uncont - CVE-2025-14688
IBM® Db2® is vulnerable to a denial of service when fetching - CVE-2026-6915
Flaw in the updateUser Command May Allow Unauthorized Config - CVE-2026-1352
IBM® Db2® is vulnerable to a trap or return SQLCODE -901 whe - CVE-2026-6839
ONE 安全漏洞
V. Comments for CVE-2025-5349
No comments yet