{"vulnerability": "CVE-2026-8451", "sightings": [{"uuid": "76ac7b33-0282-421d-891f-96b2ba58a584", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpj5lsqeey2j", "content": "CVE-2026-8451 - Insufficient input validation leading to memory overread\nCVE ID : CVE-2026-8451\n \n Published : June 30, 2026, 12:33 p.m. | 1\u00a0hour, 13\u00a0minutes ago\n \n Description : Insufficient input validation in\u00a0NetScaler ADC and NetScaler Gateway\u00a0leading to memory overread if...", "creation_timestamp": "2026-06-30T13:52:42.957823Z"}, {"uuid": "6a68b149-b4a2-4893-8a72-e75d9ab07c1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3mpjr6j2ym72j", "content": "CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451) - watchTowr Labs", "creation_timestamp": "2026-06-30T19:43:12.128125Z"}, {"uuid": "2e367701-1135-4afb-bc7a-116fa9a8afe7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3mpjrnbgy7a2r", "content": "What do we even say at this point?\n\nCVE-2026-8451, a zero-day Memory Overread that watchTowr Labs identified in Citrix NetScaler appliances in March, has just been publicly disclosed with patches.\n\nWe're not done yet\u2026\n\n\u2014 from @watchtowrcyber (https://x.com/watchtowrcyber/status/2072042541352980515)", "creation_timestamp": "2026-06-30T19:51:27.264328Z"}, {"uuid": "33cd6266-f978-45d4-aa61-4cb13c86080c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3mpjsnn4ovp2s", "content": "CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451) - watchTowr Labs", "creation_timestamp": "2026-06-30T20:09:32.956326Z"}, {"uuid": "3a43db19-1110-4c9f-921e-c4b0013a9c3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3mpjsnncdgk2e", "content": "CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451) - watchTowr Labs", "creation_timestamp": "2026-06-30T20:09:33.466618Z"}, {"uuid": "067e01ee-9a0e-41be-abbb-f2b01651f253", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8451", "type": "seen", "source": "https://cyberplace.social/users/GossiTheDog/statuses/116841148400596749", "content": "mum: what impact did you have on the cybersecurity industry?\nme: LOGOS\nif you have SAML IDP enabled on Netscaler, you want to patch CVE-2026-8451 https://labs.watchtowr.com/citrixbleed-to-infinity-and-beyond-citrix-netscaler-pre-auth-memory-overread-cve-2026-8451\nThis is already being exploited in the wild, one of my honeypots got MFA bypassed with it.", "creation_timestamp": "2026-06-30T21:20:51.840147Z"}, {"uuid": "badfca2a-6700-45e3-964b-52a6051fd9a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8451", "type": "seen", "source": "https://infosec.exchange/ap/users/116797276219291526/statuses/116840120493812466", "content": "Six NetScaler vulnerabilities allow denial of service, memory overreads, and an unauthenticated file read. Patch NetScaler ADC and Gateway now.\n#NetScaler #NetScalerADC #NetScalerGateway #Citrix #CVE20268451 #DenialOfService #Vulnerability\nhttps://securityonline.info/netscaler-vulnerabilities-cve-2026-8451/?utm_source=mastodon&amp;utm_medium=jetpack_social", "creation_timestamp": "2026-06-30T21:36:58.566647Z"}, {"uuid": "e209c4db-51bf-4d34-94a4-fe87ee3dde5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0216", "content": "Citrix heeft kwetsbaarheden verholpen in NetScaler ADC en NetScaler Gateway die verband houden met onvoldoende invoervalidatie, onjuiste toegangscontrole en het onjuist vrijgeven van geheugen. De kwetsbaarheden met de kenmerken CVE-2026-8451 en CVE-2026-10817 ontstaan door onvoldoende invoervalidatie, waarbij de software invoergroottes en -grenzen niet correct controleert. Dit kan leiden tot geheugenoverlezingen, wat kan resulteren in ongeautoriseerde openbaarmaking van gevoelige informatie, wanneer de producten zijn geconfigureerd als SAML IDP, of als TCP TimeStamp is ingeschakeld bij een TCP-profiel dat is gekoppeld aan een virtuele server van het type: Load Balancing (LB), Content Switching (CS) of VPN.\n\nDe kwetsbaarheden met de kenmerken CVE-2026-8452 en CVE-2026-8655 bevinden zich in de manier waarop geheugen wordt beheerd in NetScaler ADC en NetScaler Gateway. Dit kan leiden tot een denial-of-service (DoS) of een ongewenste control flow wanneer de producten zijn geconfigureerd als Gateway, DNS-proxy, recursieve DNS-resolver of AAA-virtuele server.\n\nDe kwetsbaarheid met het kenmerk CVE-2026-13474 ontstaat door het onjuist vrijgeven van geheugen. Kwaadwillenden kunnen deze kwetsbaarheid misbruiken door via speciaal geprepareerde HTTP/2-verzoeken een denial-of-service (DoS) te veroorzaken.\n\nDe kwetsbaarheid met het kenmerk CVE-2026-10816 betreft een probleem met de toegangscontrole binnen de Management Interface. Niet-geauthenticeerde kwaadwillenden op afstand kunnen de kwetsbaarheid misbruiken om willekeurige bestanden uit te lezen. Dit kan resulteren in ongeautoriseerde openbaarmaking van gevoelige informatie.\n\nOnderzoekers hebben Proof-of-Concept (PoC) code gedeeld waarmee de kwetsbaarheid met kenmerk CVE-2026-8451 kan worden aangetoond.", "creation_timestamp": "2026-06-30T22:01:06.327740Z"}, {"uuid": "fcc36cf0-a047-47a8-a50e-caf3e101d37c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mpjz7uqlw72s", "content": "CVE-2026-8451\uff1aCitrix NetScaler\u306e\u8106\u5f31\u6027\u306b\u3088\u308b\u30e1\u30e2\u30ea\u6f0f\u6d29\n\neSecurity Planet \u306e\u30b3\u30f3\u30c6\u30f3\u30c4\u304a\u3088\u3073\u88fd\u54c1\u30ec\u30b3\u30e1\u30f3\u30c7\u30fc\u30b7\u30e7\u30f3\u306f\u3001\u7de8\u96c6\u4e0a\u306e\u72ec\u7acb\u6027\u3092\u4fdd\u3063\u3066\u3044\u307e\u3059\u3002\u30d1\u30fc\u30c8\u30ca\u30fc\u3078\u306e\u30ea\u30f3\u30af\u3092\u30af\u30ea\u30c3\u30af\u3059\u308b\u3053\u3068\u3067\u3001\u53ce\u76ca\u304c\u767a\u751f\u3059\u308b\u5834\u5408\u304c\u3042\u308a\u307e\u3059\u3002 \u8a73\u7d30\u306f\u3053\u3061\u3089 watchTowr \u306e\u7814\u7a76\u8005\u305f\u3061\u304c\u3001Citrix NetScaler \u306b\u8106\u5f31\u6027\u3092\u767a\u898b\u3057\u307e\u3057\u305f\u3002\u3053\u306e\u8106\u5f31\u6027\u306b\u3088\u308a...", "creation_timestamp": "2026-06-30T22:07:07.149260Z"}, {"uuid": "9320b37b-c493-4708-aab1-71964000b22d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mpjzzjtqtl2o", "content": "CVE-2026-8451: Citrix's New Flaw Echoes CitrixBleed \u2014 Act Now #CVE20268451 #CitrixBleed #Cybersecurity", "creation_timestamp": "2026-06-30T22:21:34.576387Z"}, {"uuid": "4ae37d75-5d8c-4fad-b612-04bcbdc2d1cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mpjzzlru6a2m", "content": "CVE-2026-8451: Citrix's Security Patch Doesn't Solve Underlying Risks #CVE20268451 #Citrix #NetScaler", "creation_timestamp": "2026-06-30T22:21:46.601828Z"}, {"uuid": "6f020f3c-0f2b-46c2-abb5-be7f9b9a02dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mpjzznrdeu24", "content": "CVE-2026-8451: Citrix's Security Narrative Raises Critical Privacy Concerns #CVE20268451 #Citrix #NetScaler", "creation_timestamp": "2026-06-30T22:21:50.124359Z"}, {"uuid": "cc42feed-c4e8-48e7-8fa3-06a714731f92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mpjzzpkqxe2o", "content": "CVE-2026-8451: Citrix's Latest NetScaler Flaw Echoes CitrixBleed's Process Failures #CVE20268451 #NetScaler #CitrixSecurity", "creation_timestamp": "2026-06-30T22:21:51.205203Z"}, {"uuid": "8ec0dc28-38db-4310-96c2-14e43e4c377a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mpjzztwpqp2v", "content": "CVE-2026-8451: Citrix's New Patch Rehashes Warnings from CitrixBleed #CVE20268451 #Citrix #CyberSecurity", "creation_timestamp": "2026-06-30T22:21:53.570491Z"}, {"uuid": "689876b9-22c0-4c44-8108-4f205a907752", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mpk26m4nrw2k", "content": "CVE-2026-8451: Are Citrix's Patches Sufficient to Mitigate Risks? #CVE2026 #Citrix #NetScaler", "creation_timestamp": "2026-06-30T22:24:19.137728Z"}, {"uuid": "bd6a15c5-29bc-4bf5-9456-b2dc6b81ab88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0216", "content": "Citrix heeft kwetsbaarheden verholpen in NetScaler ADC en NetScaler Gateway die verband houden met onvoldoende invoervalidatie, onjuiste toegangscontrole en het onjuist vrijgeven van geheugen. De kwetsbaarheden met de kenmerken CVE-2026-8451 en CVE-2026-10817 ontstaan door onvoldoende invoervalidatie, waarbij de software invoergroottes en -grenzen niet correct controleert. Dit kan leiden tot geheugenoverlezingen, wat kan resulteren in ongeautoriseerde openbaarmaking van gevoelige informatie, wanneer de producten zijn geconfigureerd als SAML IDP, of als TCP TimeStamp is ingeschakeld bij een TCP-profiel dat is gekoppeld aan een virtuele server van het type: Load Balancing (LB), Content Switching (CS) of VPN.\n\nDe kwetsbaarheden met de kenmerken CVE-2026-8452 en CVE-2026-8655 bevinden zich in de manier waarop geheugen wordt beheerd in NetScaler ADC en NetScaler Gateway. Dit kan leiden tot een denial-of-service (DoS) of een ongewenste control flow wanneer de producten zijn geconfigureerd als Gateway, DNS-proxy, recursieve DNS-resolver of AAA-virtuele server.\n\nDe kwetsbaarheid met het kenmerk CVE-2026-13474 ontstaat door het onjuist vrijgeven van geheugen. Kwaadwillenden kunnen deze kwetsbaarheid misbruiken door via speciaal geprepareerde HTTP/2-verzoeken een denial-of-service (DoS) te veroorzaken.\n\nDe kwetsbaarheid met het kenmerk CVE-2026-10816 betreft een probleem met de toegangscontrole binnen de Management Interface. Niet-geauthenticeerde kwaadwillenden op afstand kunnen de kwetsbaarheid misbruiken om willekeurige bestanden uit te lezen. Dit kan resulteren in ongeautoriseerde openbaarmaking van gevoelige informatie.\n\nOnderzoekers hebben Proof-of-Concept (PoC) code gedeeld waarmee de kwetsbaarheid met kenmerk CVE-2026-8451 kan worden aangetoond.", "creation_timestamp": "2026-07-01T01:00:46.586877Z"}, {"uuid": "d8d80fda-33dd-4cd0-8648-1d98088f99a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/citrix-security-advisory-av26-645", "content": "", "creation_timestamp": "2026-07-01T02:37:53.676894Z"}, {"uuid": "5b5b8fc5-5d2b-4e4b-8279-a3a07c876cbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mpkmxmybse2l", "content": "Citrix patched six NetScaler flaws, including CVE-2026-8451, a high-severity memory disclosure bug linked to CitrixBleed-like issues in SAML auth parsing. #Citrix #NetScaler #CVE-2026-8451", "creation_timestamp": "2026-07-01T04:00:25.922189Z"}, {"uuid": "090a2f1e-542a-4763-a257-069e0aa7648e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://thehackernews.com/2026/07/citrix-patches-six-netscaler-flaws.html", "content": "Citrix on Tuesday released security updates to address multiple flaws in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway) that could be exploited by an attacker to facilitate arbitrary file reads or trigger a denial-of-service (DoS) condition.\n\nThe vulnerabilities are listed below -\n\n\n  CVE-2026-8451 (CVSS score: 8.8) - An insufficient input validation", "creation_timestamp": "2026-07-01T07:00:47.915018Z"}, {"uuid": "3b95fe79-c1cf-4773-8fa5-dd9e4bad3e20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-8451", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/ecf78090-6993-45d3-aa99-c6de905a5e7a", "content": "", "creation_timestamp": "2026-07-01T07:59:26.932836Z"}]}