{"id":284235,"date":"2026-06-30T17:52:00","date_gmt":"2026-06-30T21:52:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/06\/30\/citrix-patches-a-new-netscaler-flaw-with-echoes-of-citrixbleed\/"},"modified":"2026-06-30T17:52:00","modified_gmt":"2026-06-30T21:52:00","slug":"citrix-patches-a-new-netscaler-flaw-with-echoes-of-citrixbleed","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/06\/30\/citrix-patches-a-new-netscaler-flaw-with-echoes-of-citrixbleed\/","title":{"rendered":"Citrix patches a new NetScaler flaw with echoes of CitrixBleed"},"content":{"rendered":"<p><a href=\"https:\/\/cyberscoop.com\/citrix-netscaler-flaw-cve-2026-8451-citrixbleed\/\">Citrix patches a new NetScaler flaw with echoes of CitrixBleed<\/a><\/p>\n<p><a href=\"https:\/\/cyberscoop.com\/citrix-netscaler-flaw-cve-2026-8451-citrixbleed\/\">https:\/\/cyberscoop.com\/citrix-netscaler-flaw-cve-2026-8451-citrixbleed\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-30 17:52:00<\/a><\/p>\n<p>Source Domain: <a href=\"cyberscoop.com\">cyberscoop.com<\/a><\/p>\n<p>Citrix published a security bulletin Tuesday disclosing six vulnerabilities in NetScaler ADC and NetScaler Gateway appliances, including a high-severity memory disclosure flaw that researchers say belongs to a vulnerability class first identified in the 2023 incident known as CitrixBleed.<\/p>\n<p>The company rated the overall bulletin severity as high and assigned CVSS scores ranging from 6.9 to 8.8 across the six CVEs. Citrix said customers should install the updated builds and, in one case, manually adjust a configuration parameter even after patching.<\/p>\n<p>The most closely scrutinized of the vulnerabilities, CVE-2026-8451, was discovered by researchers at watchTowr, a cybersecurity firm that has published several prior analyses of issues in NetScaler products. According to a technical writeup the firm released alongside Tuesday\u2019s disclosure, the vulnerability stems from how NetScaler parses SAML authentication requests when an appliance is configured as a SAML identity provider, a deployment mode commonly used for single sign-on.<\/p>\n<p>WatchTowr researcher Aliz Hammond wrote that the firm found the flaw in late March while reproducing a separate vulnerability, CVE-2026-3055, that Citrix disclosed earlier this year. That March flaw was added to CISA\u2019s Known Exploited Vulnerabilities catalog after researchers and the agency confirmed active exploitation within days of disclosure. The new flaw shares a root cause with the March bug: both involve out-of-bounds memory reads triggered by malformed SAML requests sent to NetScaler\u2019s authentication endpoints.<\/p>\n<p>\u201cReferencing what we wrote previously, because it is demonstrably evergreen: \u2018However, what should be of concern is the bigger picture \u2013 the trend, which is very clearly suggesting that memory management continues to appear fragile within Citrix NetScaler appliances, to the extent that even accidentally misconfiguring an appliance can lead to the disclosure of leaked memory,\u2019\u201d Hammond wrote in&#8230;<\/p>\n<p><a href=\"https:\/\/cyberscoop.com\/citrix-netscaler-flaw-cve-2026-8451-citrixbleed\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Citrix patches a new NetScaler flaw with echoes of CitrixBleed https:\/\/cyberscoop.com\/citrix-netscaler-flaw-cve-2026-8451-citrixbleed\/ Publish Date: 2026-06-30 17:52:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24,27],"class_list":["post-284235","post","type-post","status-publish","format-standard","hentry","category-cybersecurity","tag-cybersecurity","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/284235"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=284235"}],"version-history":[{"count":0,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/284235\/revisions"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=284235"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=284235"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=284235"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}