CVE-2026-3055 - Vulnerability Analysis
CriticalCVSS: 9.8Last Updated: March 31, 2026
Published: March 23, 2026Updated: March 31, 2026
Overview
Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overread
Severity & Score
Severity: Critical
CVSS Score: 9.8
EPSS Score: 4335.1%(Probability of exploitation in next 30 days)
Social Media Activity(1 post)
Taggart :ifin:
@mttaggart
Useful explainer on the latest Citrix shenanigans, including verifying exposure and hunting/forensics recommendations https://www.picussecurity.com/resource/blog/cve-2026-3055-cve-2026-4368-inside-the-netscaler-citrixbleed-3-memory-overread
View original postGitHub Repositories(5 repos)
- https://github.com/NetVanguard-cmd/CVE-2026-3055
- https://github.com/l0lsec/check-cve-2026-3055-netscaler
- https://github.com/fevar54/CVE-2026-3055-Scanner---Herramienta-de-Detecci-n
- https://github.com/fevar54/CVE-2026-3055---Citrix-NetScaler-Memory-Overread-PoC
- https://github.com/0xBlackash/CVE-2026-3055
Related Resources
Details
- CVE ID
- CVE-2026-3055
- Severity
- Critical
- CVSS Score
- 9.8
- EPSS
- 4335.1%
- Nuclei
- Available
- Social Posts
- 1
EPSS Score
4335.1%Probability of exploitation in the next 30 days