Black & White Path
Jul 7, 2026 · Information Security
CitrixBleed Infinity: Pre‑Auth Memory Overread in NetScaler (CVE‑2026‑8451)
The watchTowr team uncovered a high‑severity (CVSS 8.8) pre‑authentication memory overread vulnerability (CVE‑2026‑8451) in Citrix NetScaler’s SAML IDP parsing, detailing the XML attribute flaw, exploitation steps, leaked data, a simple DoS path, detection tooling, and remediation guidance.
CVE-2026-8451Citrix NetScalerSAML
0 likes · 11 min read
