Citrix
Coverage of Citrix in the Nexus archive.
- CitrixBleed-ing Again? NetScaler Vulnerability Under Attack
Attackers are exploiting a memory disclosure flaw in Citrix's NetScaler products shortly after researchers published a proof-of-concept (PoC) exploit. The vulnerability, referred to as 'CitrixBleed', is under active attack.
- Citrix says it's back as a mainstream server virtualization player that won't send scary bills
Citrix has re-entered the mainstream server virtualization market with XenServer 9, emphasizing cost-effectiveness and operational simplicity as alternatives to competitors like VMware. The release highlights improved performance, support for multiple operating systems, and integration with Citrix DaaS environments.
- Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service
Citrix released security updates to address six vulnerabilities in NetScaler ADC and NetScaler Gateway, which could allow arbitrary file reads or denial-of-service attacks. The flaws include CVE-2026-8451, rated with a CVSS score of 8.8 due to insufficient input validation.
- Citrix patches a new NetScaler flaw with echoes of CitrixBleed
Citrix disclosed six vulnerabilities in NetScaler ADC and Gateway, including a high-severity memory disclosure flaw (CVE-2026-8451) linked to the CitrixBleed vulnerability class. Researchers at watchTowr and others identified the flaws, which involve memory management issues and require patching and configuration adjustments to mitigate risks.