By Aytun Çelebi
Publication Date: 2026-03-31 12:21:00
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has mandated that federal agencies patch Citrix NetScaler appliances by April 2 due to an actively exploited vulnerability known as CVE-2026-3055.
This vulnerability poses significant risks as unauthenticated remote attackers can exploit it to steal sensitive information from Citrix ADC or Citrix Gateway appliances configured as SAML identity providers. CISA has categorized this vulnerability as a part of its Known Exploited Vulnerabilities (KEV) Catalog.
CISA’s directive comes in light of rising exploitation risks flagged by multiple cybersecurity firms after Citrix released security updates on March 23. The flaw’s technical characteristics bear similarities to previous issues such as ‘CitrixBleed’ and ‘CitrixBleed2’.




