VDB
CVE-2026-8451
CVE-2026-8451
PUBLISHED
CVSS 8.600000381469727 HIGH
On June 30, 2026, Citrix published a security advisory to address critical vulnerabilities in the following products: NetScaler ADC and NetScaler Gateway - versions 14.1 before 14.1-72.61 NetScaler ADC and NetScaler Gateway - versions 13.1 before 13.1-63.18 NetScaler ADC FIPS – versions before 14.1-72.61 FIPS NetScaler ADC FIPS and NDcPP – versions before 13.1-37.272 Update 1 Open-source reporting indicates that CVE-2026-8451 is being exploited. The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.
EPSS 0.53% · 40.7th percentile
Risk Scores
CVSS 4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.53%
40.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Citrix | NetScaler ADC FIPS – versions before 14.1-72.61 FIPS | |
| Citrix | NetScaler ADC and NetScaler Gateway - versions 13.1 before 13.1-63.18 | |
| Citrix | NetScaler ADC FIPS and NDcPP – versions before 13.1-37.272 | |
| Renforcer | Renforcer les systèmes d’exploitation et les applications; | |
| Appliquer | Appliquer des correctifs aux applications et aux systèmes d’exploitation; | |
| Citrix | NetScaler ADC and NetScaler Gateway - versions 14.1 before 14.1-72.61 | |
| Isoler | Isoler les applications Web. | |
| Patch | Patch operating systems and applications | |
| Harden | Harden operating systems and applications | |
| Isolate | Isolate web-facing applications |
Timeline
- Aug 12, 2021 CrowdSec Sighting
- Aug 15, 2024 CrowdSec Sighting
- Jan 2, 2025 CrowdSec Sighting
- Apr 17, 2025 CrowdSec Sighting
- Apr 8, 2026 CrowdSec Sighting
- Apr 8, 2026 CrowdSec Sighting
- Jun 21, 2026 CrowdSec Sighting
- Jun 30, 2026 CVE Published
- Jun 30, 2026 CVE Updated
- Jul 1, 2026 EPSS Score
- Jul 1, 2026 Coalition ESS Score
References
- https://cyber.gc.ca/en/alerts-advisories/citrix-security-advisory-av26-645 advisory
- https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX696604 vendor
- https://support.citrix.com/support-home/topic-article-list?trendingCategory=20&trendingTopicName=Security%20Bulletin vendor
- https://cyber.gc.ca/en/alerts-advisories/al26-016-vulnerability-impacting-citrix-netscaler-cve-2026-8451 advisory
- https://cyber.gc.ca/fr/alertes-avis/al26-016-vulnerabilite-touchant-citrix-netscaler-cve-2026-8451 advisory