← Back

CVE-2025-4365

nvd nist
Published: Jun 17, 2025Modified: Aug 6, 2025

JSON object

Loading...
6.9
Vector
CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Show more
CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less
Source: secure@citrix.com (Secondary)

Description

Arbitrary file read in NetScaler Console and NetScaler SDX (SVM)

Affected (37)

Citrix
2 products
Netscaler Console
Netscaler Sdx
Configuration A
37 vulnerable
Vulnerable SoftwareAffected Versions
Citrix
Netscaler Console
Version 13.1 build12.50
Netscaler Console
Version 13.1 build17.42
Netscaler Console
Version 13.1 build21.53
Netscaler Console
Version 13.1 build24.38
Netscaler Console
Version 13.1 build27.62
Netscaler Console
Version 13.1 build30.52
Netscaler Console
Version 13.1 build33.50
Netscaler Console
Version 13.1 build37.38
Netscaler Console
Version 13.1 build4.43
Netscaler Console
Version 13.1 build42.47
Netscaler Console
Version 13.1 build45.61
Netscaler Console
Version 13.1 build48.47
Netscaler Console
Version 13.1 build49.13
Netscaler Console
Version 13.1 build50.23
Netscaler Console
Version 13.1 build51.14
Netscaler Console
Version 13.1 build52.19
Netscaler Console
Version 13.1 build53.22
Netscaler Console
Version 13.1 build53.24
Netscaler Console
Version 13.1 build54.29
Netscaler Console
Version 13.1 build55.29
Netscaler Console
Version 13.1 build56.18
Netscaler Console
Version 13.1 build57.26
Netscaler Console
Version 13.1 build58.21
Netscaler Console
Version 13.1 build9.60
Netscaler Console
Version 14.1 build12.34
Netscaler Console
Version 14.1 build17.38
Netscaler Console
Version 14.1 build21.60
Netscaler Console
Version 14.1 build25.53
Netscaler Console
Version 14.1 build25.56
Netscaler Console
Version 14.1 build29.63
Netscaler Console
Version 14.1 build34.43
Netscaler Console
Version 14.1 build38.53
Netscaler Console
Version 14.1 build4.42
Netscaler Console
Version 14.1 build43.50
Netscaler Console
Version 14.1 build8.50
Citrix
Netscaler Sdx
From 13.1-49.13 to 13.1-58.32
Netscaler Sdx
From 14.1-4.42 to 14.1-47.46

Related CWEs

CWE-1284
Improper Validation of Specified Quantity in Input
The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.

References (1)

Source: secure@citrix.com
Vendor Advisory

Timeline

No history available yet.