Exposures › CVE-2026-3055
Citrix NetScaler SAML IDP configuration allows out-of-bounds memory reads, enabling attackers to read sensitive data without code execution.
This vulnerability allows attackers to read sensitive data from memory when Citrix NetScaler is configured as a SAML Identity Provider, exposing credentials and session tokens. DIB organizations must immediately patch NetScaler appliances and audit SAML configurations to prevent data exfiltration, as this is actively exploited in the wild.
Shame score — While actively exploited, the vulnerability is a known configuration issue rather than a default credential or supply-chain failure.
Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability when configured as a SAML IDP leading to memory overread.
| Product | Provider | Status | Match |
|---|---|---|---|
| Citrix for Government | Citrix | Authorized | vendor-exact · 0.90 |