Proof-of-Concept for CitrixBleed2 Leak Released — 127 Bytes of Data Exfiltration Possible Per Request

1 post • Page 1 of 1

Shane1145: Posts: 1624; Joined: Wed Sep 25, 2024 2:31 pm

Proof-of-Concept for CitrixBleed2 Leak Released — 127 Bytes of Data Exfiltration Possible Per Request

Quote

Post by Shane1145 » Wed Jul 09, 2025 5:31 am

On June 17, 2025, Citrix disclosed CVE-2025-5777, a critical memory leak vulnerability dubbed “CitrixBleed 2.”

This flaw affects NetScaler ADC and NetScaler Gateway devices configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual servers. Impacted versions include:

https://cyberpress.org/attackers-exfiltrate-127-bytes/

Post Reply

1 post • Page 1 of 1

Return to “Commercial”

Proof-of-Concept for CitrixBleed2 Leak Released — 127 Bytes of Data Exfiltration Possible Per Request

Proof-of-Concept for CitrixBleed2 Leak Released — 127 Bytes of Data Exfiltration Possible Per Request

Proof-of-Concept for CitrixBleed2 Leak Released — 127 Bytes of Data Exfiltration Possible Per Request

Proof-of-Concept for CitrixBleed2 Leak Released — 127 Bytes of Data Exfiltration Possible Per Request