CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-6543: Memory overflow vulnerability leading to unintended control flow and Denial of Service

9.2 CVSS

Description

Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

Known Exploited

🚨 Marked as known exploited on June 30th, 2025 (about 13 hours ago).

Classification

CVE ID: CVE-2025-6543

CVSS Base Severity: CRITICAL

CVSS Base Score: 9.2

CVSS Vector: CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Problem Types

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

Affected Products

Vendor: NetScaler

Product: ADC, Gateway

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.06% (probability of being exploited)

EPSS Percentile: 17.87% (scored less or equal to compared to others)

EPSS Date: 2025-06-30 (when was this score calculated)

Stakeholder-Specific Vulnerability Categorization (SSVC)

SSVC Exploitation: none

SSVC Technical Impact: total

SSVC Automatable: false

References

https://nvd.nist.gov/vuln/detail/CVE-2025-6543
https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694788

Timeline

2025-06-25 16:30:35 UTC
TheHackerNews

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC
2025-06-25 17:45:32 UTC
BleepingComputer

Citrix warns of NetScaler vulnerability exploited in DoS attacks
2025-06-26 04:40:17 UTC
CVE

Memory overflow vulnerability leading to unintended control flow and Denial of Service
2025-06-30 16:45:12 UTC
CISA KEV

Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability
2025-06-30 16:46:12 UTC
🚨 Marked as Known Exploited