Citrix NetScaler ADC bug added to CISA list of known exploits

The Cybersecurity and Infrastructure Security Agency (CISA) on March 30 added a Citrix NetScaler bug to its Known Exploited Vulnerabilities (KEV) catalog, citing observed exploitation in the wild by many security researchers and Citrix itself.The bug — CVE-2026-3055 — functions as an out-of-bounds read vulnerability when configured as a SAML IDP leading to memory overread that affects Citrix NetScaler ADC appliances and NetScaler Gateway — a condition that could lead to full takeover of an enterprise network.SC Media reported on March 24 that the 9.3 CVE-2026-3055 flaw was touted by researchers at Rapid7 and watchTowr as similar to the CitrixBleed memory leak vulnerabilities from 2023 that saw LockBit use it effectively against ICBC, Boeing, and DP World.For context, BleepingComputer reported March 31 that Shadowserver now tracks nearly 30,000 NetScaler ADC appliances and more than 2,300 Gateways instances as exposed online.   Nathaniel Jones, vice president,…