Cloud Software Group NetScaler urgent remediation advisory
Advisory/Mitigation
Summary
Hide ▲
Show ▼
Cloud Software Group issued urgent remediation guidance for NetScaler ADC and NetScaler Gateway, telling affected customers to install updated versions as soon as possible to reduce exposure. The advisory covers fixes for CVE-2026-3055 and CVE-2026-4368, which affect appliances used for secure remote access and identity functions. The company also provided instructions to help operators identify and patch vulnerable instances before attackers can take advantage of them.
Related Happenings
Citrix security patch release for CVE-2026-13474
Security Patch Release
H score35
First: 01.07.2026 06:54
Last: 01.07.2026 06:54
Sources 1
About this happening:
**Citrix** released security updates for **NetScaler ADC** and **NetScaler Gateway** to fix **six vulnerabilities** that could enable **arbitrary file reads** or **denial of servi...
Citrix security patch release for CVE-2026-13474
Security Patch ReleaseAbout this happening: **Citrix** released security updates for **NetScaler ADC** and **NetScaler Gateway** to fix **six vulnerabilities** that could enable **arbitrary file reads** or **denial of servi...
NetScaler ADC/Gateway arbitrary file read security flaw (CVE-2026-10816)
Vulnerability
H score30
First: 01.07.2026 06:54
Last: 01.07.2026 06:54
Sources 1
About this happening:
Citrix's **NetScaler ADC** and **NetScaler Gateway** now have **CVE-2026-10816**, a **7.7** flaw that can expose files through **unauthenticated arbitrary file read** when managem...
NetScaler ADC/Gateway arbitrary file read security flaw (CVE-2026-10816)
VulnerabilityAbout this happening: Citrix's **NetScaler ADC** and **NetScaler Gateway** now have **CVE-2026-10816**, a **7.7** flaw that can expose files through **unauthenticated arbitrary file read** when managem...
LiteLLM proxy privilege-escalation and RCE chain (multiple vulnerabilities)
Vulnerability
H score37
First: 15.06.2026 19:39
Last: 15.06.2026 19:39
Sources 1
About this happening:
**LiteLLM proxy** now has a disclosed **three-CVE** chain that lets a low-privilege user reach **proxy_admin** and run code on the server, putting provider keys and stored credent...
LiteLLM proxy privilege-escalation and RCE chain (multiple vulnerabilities)
VulnerabilityAbout this happening: **LiteLLM proxy** now has a disclosed **three-CVE** chain that lets a low-privilege user reach **proxy_admin** and run code on the server, putting provider keys and stored credent...
Check Point security patch release for CVE-2026-50751
Security Patch Release
H score48
First: 08.06.2026 16:05
Last: 08.06.2026 16:05
Sources 1
About this happening:
**Check Point** released **security updates** to patch **CVE-2026-50751** in **Remote Access VPN** and **Mobile Access** deployments. The update addressed a **critical authenticat...
Check Point security patch release for CVE-2026-50751
Security Patch ReleaseAbout this happening: **Check Point** released **security updates** to patch **CVE-2026-50751** in **Remote Access VPN** and **Mobile Access** deployments. The update addressed a **critical authenticat...
SolarWinds Serv-U advisory and mitigations for CVE-2026-28318
Advisory/Mitigation
H score52
First: 06.06.2026 11:14
Last: 06.06.2026 11:14
Sources 1
About this happening:
**SolarWinds Serv-U** mitigation guidance now covers **CVE-2026-28318**, reducing **unauthenticated DoS** risk from specially crafted POST requests. SolarWinds says the flaw is ad...
SolarWinds Serv-U advisory and mitigations for CVE-2026-28318
Advisory/MitigationAbout this happening: **SolarWinds Serv-U** mitigation guidance now covers **CVE-2026-28318**, reducing **unauthenticated DoS** risk from specially crafted POST requests. SolarWinds says the flaw is ad...
Timeline
-
25.03.2026 17:52 2 articles · 3mo ago
Cloud Software Group urges immediate NetScaler patching
Mitigation Patch UpdateCloud Software Group urges affected customers of NetScaler ADC and NetScaler Gateway to install the relevant updated versions as soon as possible and follow the published identification and patching guidance for CVE-2026-3055 and CVE-2026-4368. The fixes cover NetScaler ADC and NetScaler Gateway 13.1 and 14.1 builds, plus NetScaler ADC 13.1-FIPS and 13.1-NDcPP, after Citrix identified a memory overread that could expose session tokens and a race condition that could cause user session mix-ups.
Show sources
- Citrix urges admins to patch NetScaler flaws as soon as possible — www.bleepingcomputer.com — 25.03.2026 17:52
- CISA orders feds to patch actively exploited Citrix flaw by Thursday — www.bleepingcomputer.com — 31.03.2026 10:05