What is CVE-2026-3055 in Citrix NetScaler?

Critical out-of-bounds read letting attackers leak memory from SAML IDP-configured NetScaler ADC/Gateway appliances. CVSS 9.3, now exploited.

How to patch CVE-2026-3055 on NetScaler?

Upgrade to 14.1-66.59, 13.1-62.23, or 13.1-37.262. Check configs for samlIdPProfile first.

Is CVE-2026-3055 being exploited in the wild?

Yes—CISA KEV-listed March 30, 2026, with Metasploit module available.

🕳️ Vulnerabilities & CVEs

CVE-2026-3055: Citrix NetScaler's SAML Memory Leak Goes Wild, Echoing CitrixBleed Nightmare

Just when Citrix fans breathed easy post-Bleed, CVE-2026-3055 rips open NetScaler memory via SAML setups. It's live in exploits, CISA-KEV listed, Metasploit-ready—history repeating fast.

CVE Watch Apr 11, 2026 3 min read

Diagram of CVE-2026-3055 out-of-bounds read attack on Citrix NetScaler SAML IDP

⚡ Key Takeaways

CVE-2026-3055 targets SAML IDP configs in NetScaler, a common enterprise SSO setup, enabling unauthenticated memory leaks. 𝕏
Rapid exploitation: advisory to CISA KEV and Metasploit in a week—patch immediately if affected. 𝕏
Echoes CitrixBleed but hits modern auth architectures harder; expect prolonged threats. 𝕏

Published by

CVE Watch

Threat intelligence. Zero noise.

#CVE-2026-3055 #Citrix NetScaler #SAML vulnerability #memory leak #memory leak exploit

Worth sharing?

Get the best Cybersecurity stories of the week in your inbox — no noise, no spam.

Originally reported by Rapid7 Blog

⚡ Key Takeaways

The 60-Second TL;DR

CVE Watch

Share this article

Worth sharing?

Related Stories

UNC6201 Ditches BRICKSTORM for Sneakier GRIMBOLT in Dell Zero-Day Heist

Edge Decay: Attackers Are Breaching Your 'Secure' Firewall First

Rapid7 Cracks Open Cellular IoT: No Tamper Protections on Any Tested Device

Q4 2025: Vulnerabilities Explode, Exploits Feast

Stay in the loop