The recently patched Citrix NetScaler vulnerability tracked as CitrixBleed 2 and CVE-2025–5777 may be exploited in the wild, based on evidence uncovered by cybersecurity firm ReliaQuest.
Citrix informed customers about CVE-2025–5777 in an advisory published on June 17, saying that this critical vulnerability affecting NetScaler ADC and NetScaler Gateway could lead, in certain cases, to a memory overread.
https://www.securityweek.com/evidence-s ... erability/