VDB
BDU%3A2025-09120
BDU%3A2025-09120
PUBLISHED
CVSS 7.599999904632568 HIGH
Уязвимость контроллера доставки приложений Citrix ADC (ранее Citrix NetScaler Application Delivery Controller) и системы контроля доступа к виртуальной среде Citrix Gateway (ранее Citrix NetScaler Gateway), связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании
Risk Scores
CVSS 2.0
7.599999904632568
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Citrix Systems Inc. | NetScaler Application Delivery Controller, NetScaler Gateway |
Exploit Intelligence
- Multi-host, multi-port scanner and auditor for CVE-2025-6543-affected NetScaler devices. Supports SNMP and SSH enumeration with optional CSV reporting and exploit stubs. (github-poc)
- Citrix Bleed 2 PoC (github-poc)
- Script para determinar si Citrix es vulnerable al CVE-2025-6543 (github-poc)
- vulncheck.py (github-poc)
- kev.json (github-poc)
- data.js (github-poc)
Timeline
- Jul 28, 2025 CVE Published
- Sep 10, 2025 CVE Updated
References
- https://nvd.nist.gov/vuln/detail/CVE-2025-6543 url
- https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694788 url
- https://www.esentire.com/security-advisories/actively-exploited-citrix-vulnerability-cve-2025-6543 url
- https://www.cisa.gov/sites/default/files/csv/known_exploited_vulnerabilities.csv url
- https://t.me/c/1627154862/198986 url