{"cve":{"cve_id":"CVE-2025-8424","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.02723,"epss_percentile":0.84116,"epss_as_of":"2026-06-23","description":"Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway when an attacker can get access to the appliance NSIP, Cluster Management IP or local GSLB Site IP or SNIP with Management Access","published_at":"2025-08-26T13:11:10.822000Z","last_modified_at":null,"cvss_v3_score":null,"cvss_v3_vector":null,"cvss_v3_severity":null,"cvss_v4_score":8.7,"cvss_v4_vector":"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L","cvss_v4_severity":"HIGH","ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-1284"],"nvd_references":["https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694938"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:28:37.467382Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":null,"metrics":[]},"cvss_v4_decoded":{"version":"4.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"A","value_label":"Adjacent"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"AT","name":"Attack Requirements","value":"N","value_label":"None"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"VC","name":"Confidentiality (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VI","name":"Integrity (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VA","name":"Availability (Vulnerable System)","value":"H","value_label":"High"},{"metric":"SC","name":"Confidentiality (Subsequent System)","value":"L","value_label":"Low"},{"metric":"SI","name":"Integrity (Subsequent System)","value":"L","value_label":"Low"},{"metric":"SA","name":"Availability (Subsequent System)","value":"L","value_label":"Low"}]},"affected":[{"vendor_slug":"netscaler","vendor_name":"NetScaler","product_slug":"adc","product_name":"ADC","version_start":"14.1","version_start_inclusive":true,"version_end":"47.48","version_end_inclusive":false,"cpe23_uri":"cve5:netscaler:adc:14.1:47.48"},{"vendor_slug":"netscaler","vendor_name":"NetScaler","product_slug":"adc","product_name":"ADC","version_start":"13.1","version_start_inclusive":true,"version_end":"59.22","version_end_inclusive":false,"cpe23_uri":"cve5:netscaler:adc:13.1:59.22"},{"vendor_slug":"netscaler","vendor_name":"NetScaler","product_slug":"adc","product_name":"ADC","version_start":"13.1 FIPS and NDcPP","version_start_inclusive":true,"version_end":"37.241","version_end_inclusive":false,"cpe23_uri":"cve5:netscaler:adc:13.1 FIPS and NDcPP:37.241"},{"vendor_slug":"netscaler","vendor_name":"NetScaler","product_slug":"adc","product_name":"ADC","version_start":"12.1 FIPS and NDcPP","version_start_inclusive":true,"version_end":"55.330","version_end_inclusive":false,"cpe23_uri":"cve5:netscaler:adc:12.1 FIPS and NDcPP:55.330"},{"vendor_slug":"netscaler","vendor_name":"NetScaler","product_slug":"gateway","product_name":"Gateway","version_start":"14.1","version_start_inclusive":true,"version_end":"47.48","version_end_inclusive":false,"cpe23_uri":"cve5:netscaler:gateway:14.1:47.48"},{"vendor_slug":"netscaler","vendor_name":"NetScaler","product_slug":"gateway","product_name":"Gateway","version_start":"13.1","version_start_inclusive":true,"version_end":"59.22","version_end_inclusive":false,"cpe23_uri":"cve5:netscaler:gateway:13.1:59.22"},{"vendor_slug":"netscaler","vendor_name":"NetScaler","product_slug":"gateway","product_name":"Gateway","version_start":"13.1 FIPS and NDcPP","version_start_inclusive":true,"version_end":"37.241","version_end_inclusive":false,"cpe23_uri":"cve5:netscaler:gateway:13.1 FIPS and NDcPP:37.241"},{"vendor_slug":"netscaler","vendor_name":"NetScaler","product_slug":"gateway","product_name":"Gateway","version_start":"12.1 FIPS and NDcPP","version_start_inclusive":true,"version_end":"55.330","version_end_inclusive":false,"cpe23_uri":"cve5:netscaler:gateway:12.1 FIPS and NDcPP:55.330"}],"exploit_refs":[],"news":[],"references":[{"url":"https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694938","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2025-08-26T13:11:10.822000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:49:56.134173Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:49:56.134173Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:49:56.134173Z","label":"CVSS score revised","source":"cvelistv5"}]}