Citrix ADC is an application delivery controller that analyzes application-specific traffic to distribute, optimize, and secure Layer 4-Layer 7 (L4–L7) network traffic intelligently for web applications.

Citrix ADC VPX

Citrix ADC CPX is a container-based application delivery controller that can be provisioned on a Docker host. Citrix ADC CPX enables customers to leverage Docker engine capabilities and use Citrix ADC load balancing and traffic management features for container-based applications.

Citrix ADC CPX

Race Condition in NetScaler ADC and NetScaler Gateway when appliance is configured as Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server leading to User Session Mixup

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-3055	CRITICAL	9.3	Citrix ADC VPX	cpe:2.3:a:citrix:netscaler_application_delivery_controller	No	Yes	Mar 23, 2026
CVE-2025-7775	CRITICAL	9.2	Citrix ADC VPX	cpe:2.3:a:citrix:netscaler_application_delivery_controller	Yes	Yes	Aug 26, 2025
CVE-2025-7776	HIGH	8.8	Citrix ADC VPX	cpe:2.3:a:citrix:netscaler_application_delivery_controller	No	Yes	Aug 26, 2025
CVE-2025-8424	HIGH	8.7	Citrix ADC VPX	cpe:2.3:a:citrix:netscaler_application_delivery_controller	No	Yes	Aug 26, 2025
CVE-2026-4368	HIGH	7.7	Citrix ADC VPX	cpe:2.3:a:citrix:netscaler_application_delivery_controller	No	Yes	Mar 23, 2026

CVE-2026-4368:
Citrix ADC VPX vulnerability analysis and mitigation

7.7

Related Citrix ADC VPX vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2026-4368: Citrix ADC VPX vulnerability analysis and mitigation