Primary

Context

Citrix NetScaler Console and SDX Arbitrary File Read Vulnerability

Vulnerability

Patched

An arbitrary file read vulnerability has been identified in Citrix NetScaler Console (versions 14.1 prior to 14.1.47.46 and 13.1 prior to 13.1.58.32) and NetScaler SDX (SVM) 14.1 prior to 14.1.47.46 and 13.1 prior to 13.1.58.32). This vulnerability allows authenticated users to read arbitrary files on the system.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive files on the system.

Remediation

Users are advised to upgrade to NetScaler Console versions 14.1.47.46 or later, 13.1.58.32 or later, and to NetScaler SDX (SVM) versions 14.1.47.46 or later and 13.1.58.32 or later.

Added: Jun 17, 2025, 1:20 PM

Updated: Jun 17, 2025, 1:20 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

3.3

exploitability

4.9

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

3.3

exploitability

4.9

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Citrix NetScaler Console and SDX Arbitrary File Read Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Citrix NetScaler Console

Citrix NetScaler SDX

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating