cbcvebase.
CVE-2026-8451
published 2026-06-30

CVE-2026-8451: Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler ADC or NetScaler Gateway is configured as a SAML…

PriorityP343high8.8CVSS 4.0
AVNACLATNPRNUINVCHVILVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler ADC or NetScaler Gateway is configured as a SAML IDP

Affected

6 ranges
VendorProductVersion rangeFixed in
netscaleradc>= 13.1 < 63.1863.18
netscaleradc>= 13.1 FIPS and NDcPP < 37.27237.272
netscaleradc>= 14.1 < 72.6172.61
netscaleradc>= 14.1 FIPs < 72.6172.61
netscalergateway>= 13.1 < 63.1863.18
netscalergateway>= 14.1 < 72.6172.61
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.