# CitrixBleed-ing Again? NetScaler Vulnerability Under Attack

_Friday, July 10, 2026 at 8:00 AM EDT · Security · Latest · Tier 2 — Notable_

![CitrixBleed-ing Again? NetScaler Vulnerability Under Attack — Primary](https://www.rescana.com/post/img/active-exploitation-alert-citrix-netscaler-adc-gateway-vulnerability-cve-2023-4966-citrixbleed-ing-again-under-massive-a-cover.png)

A critical vulnerability in Citrix NetScaler ADC and NetScaler Gateway appliances is being actively exploited in the wild, according to a Rescana executive summary. The flaw, tracked as CVE-2023-4966 and widely referred to as CitrixBleed-ing Again, enables remote, unauthenticated attackers to extract sensitive memory contents including session tokens and credentials from affected devices. Rescana said the vulnerability is rooted in improper memory handling during the parsing of authentication requests, particularly when the appliance is configured as a SAML Identity Provider or as a Gateway. Active exploitation has been confirmed by multiple security research organizations including WatchTowr Labs, SecurityWeek, and CISA. Exploitation attempts were observed within hours of public disclosure, with attackers leveraging public proof-of-concept code to target exposed appliances. The vulnerability is being used to extract session tokens and credentials for unauthorized access. Organizations have reported abnormal authentication events, session hijacking, and crashes of the nsppe process causing denial-of-service conditions. Rescana said immediate action is required to upgrade to the latest fixed versions specified in Citrix Security Bulletin CTX579459. After patching, all active and persistent sessions should be terminated to prevent session hijacking using previously leaked tokens.

## Sources

- [rescana.com](https://www.rescana.com/post/active-exploitation-alert-citrix-netscaler-adc-gateway-vulnerability-cve-2023-4966-citrixbleed-ing-again-under-massive-a)

---
Canonical: https://techandbusiness.org/newswire/A9KxU337ELsycETkomR0kf
Retrieved: 2026-07-10T23:43:24.980Z
Publisher: Tech & Business (techandbusiness.org)
