CVE-2025-5777 PoC — NetScaler ADC and NetScaler Gateway - Insufficient input validation leading to memory overread

Source

https://github.com/rootxsushant/Citrix-NetScaler-Memory-Leak-CVE-2025-5777

Associated Vulnerability

Title:NetScaler ADC and NetScaler Gateway - Insufficient input validation leading to memory overread (CVE-2025-5777)
Description:Insufficient input validation leading to memory overread when the NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

Description

Update the old POC of CVE-2025-5777 Citrix NetScaler Memory leak

Readme

# CVE-2025-5777 – Citrix NetScaler Memory Leak (Updated PoC)

This repository contains an **updated Proof-of-Concept (PoC)** for exploiting **CVE-2025-5777** – a memory leak vulnerability affecting Citrix NetScaler.

The original PoC by [0xgh057r3c0n](https://github.com/0xgh057r3c0n/CVE-2025-5777) works perfectly,  
but some users reported connection errors due to **DNS issues, IPv6 quirks, or incorrect URL formats**.

### **What’s New in This Updated PoC**
- **Clearer error messages** for DNS failures and incorrect URLs
- **IPv4-only mode** by default to avoid IPv6 connectivity problems
- **Validation for `http://` or `https://` in the target URL**
- No changes to the **actual vulnerability logic** — the exploit works exactly the same

File Snapshot


 [4.0K]  /data/pocs/2d05db214c283353e7aa6389548eee0435f68ef0
├── [5.5K]  CVE-2025-5777.py
├── [ 754]  README.md
└── [  31]  requirements.txt

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!