VDB

CVE-2026-8451

CVE-2026-8451 PUBLISHED CVSS 8.600000381469727 HIGH

On June 30, 2026, Citrix published a security advisory to address critical vulnerabilities in the following products: NetScaler ADC and NetScaler Gateway - versions 14.1 before 14.1-72.61 NetScaler ADC and NetScaler Gateway - versions 13.1 before 13.1-63.18 NetScaler ADC FIPS – versions before 14.1-72.61 FIPS NetScaler ADC FIPS and NDcPP – versions before 13.1-37.272 Update 1 Open-source reporting indicates that CVE-2026-8451 is being exploited. The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

EPSS 0.53% · 40.7th percentile

Risk Scores

CVSS 4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.53%
40.7th percentile

Affected Products

VendorProductVersions
CitrixNetScaler ADC FIPS – versions before 14.1-72.61 FIPS
CitrixNetScaler ADC and NetScaler Gateway - versions 13.1 before 13.1-63.18
CitrixNetScaler ADC FIPS and NDcPP – versions before 13.1-37.272
RenforcerRenforcer les systèmes d’exploitation et les applications;
AppliquerAppliquer des correctifs aux applications et aux systèmes d’exploitation;
CitrixNetScaler ADC and NetScaler Gateway - versions 14.1 before 14.1-72.61
IsolerIsoler les applications Web.
PatchPatch operating systems and applications
HardenHarden operating systems and applications
IsolateIsolate web-facing applications

Timeline

  • Aug 12, 2021 CrowdSec Sighting
  • Aug 15, 2024 CrowdSec Sighting
  • Jan 2, 2025 CrowdSec Sighting
  • Apr 17, 2025 CrowdSec Sighting
  • Apr 8, 2026 CrowdSec Sighting
  • Apr 8, 2026 CrowdSec Sighting
  • Jun 21, 2026 CrowdSec Sighting
  • Jun 30, 2026 CVE Published
  • Jun 30, 2026 CVE Updated
  • Jul 1, 2026 EPSS Score
  • Jul 1, 2026 Coalition ESS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›