CISA Adds Exploited Citrix NetScaler Flaw (CVE-2025-7775) to KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a Citrix NetScaler vulnerability, identified as CVE-2025-7775, to its Known Exploited Vulnerabilities (KEV) catalog. This action follows Citrix's recent patching of three vulnerabilities in its NetScaler ADC and NetScaler Gateway products: CVE-2025-7775, CVE-2025-7776, and CVE-2025-8424. Notably, CVE-2025-7775 has been confirmed as actively exploited.

The inclusion of CVE-2025-7775 in CISA's KEV catalog signifies that this vulnerability is being exploited in the wild, posing an immediate risk to organizations using affected versions of Citrix NetScaler. CISA's KEV catalog is a critical resource for federal agencies and other organizations, helping them prioritize vulnerability management based on active exploitation. While specific technical details about the vulnerability are not provided in the initial report, its addition to the KEV catalog underscores the urgency for organizations to apply the necessary patches.

Citrix NetScaler is widely deployed in enterprise environments and critical infrastructure for application delivery and secure remote access. The simultaneous patching of three vulnerabilities indicates that Citrix has identified and addressed multiple security issues in its products. Organizations should prioritize patching these vulnerabilities to mitigate potential risks associated with their exploitation.

The active exploitation of CVE-2025-7775 highlights the critical importance of timely patch management. Cybersecurity professionals should ensure that their organizations are aware of this vulnerability and take immediate action to apply the patches provided by Citrix. Additionally, organizations should monitor their networks for signs of exploitation and review their security controls to prevent potential attacks.

The impact of this vulnerability on the cybersecurity landscape is significant due to the widespread use of Citrix NetScaler in enterprise environments and critical infrastructure. The exploitation of such vulnerabilities can lead to unauthorized access, data breaches, and other security incidents. Therefore, it is crucial for organizations to stay informed about such vulnerabilities and take proactive measures to protect their systems.