CVE-2026-10816 | Arbitrary File Read (Unauthenticated) in NetScaler ADC and N… | CVSS 7.1 HIGH

Description

Arbitrary File Read (Unauthenticated) in NetScaler ADC and NetScaler Gateway if the access to NSIP, Cluster Management IP or SNIP with management access is enabled

Metadata

CVE ID: CVE-2026-10816
State: PUBLISHED
Assigner: NetScaler
Reserved: 2026-06-04 05:48 UTC
Published: 2026-06-30 12:52 UTC
Last updated: 2026-06-30 13:28 UTC
Primary CWE: CWE-73
CWE-73 External control of file name or path
Vendor / Product: NetScaler / ADC
Sources: cve.org · NVD

Severity & Metrics

7.1 HIGH CVSS 4.0

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

SSVC — CISA Coordinator

Exploitation: none
Automatable: no
Tech. Impact: partial

Affected products (2)

Vendor	Product	Platform	Versions
NetScaler	ADC	—	14.1 < 72.61, 13.1 < 63.18, 14.1 FIPS < 72.61, 13.1 FIPS and NDcPP < 37.272
NetScaler	Gateway	—	14.1 < 72.61, 13.1 < 63.18

Weakness (CWE)

CWE	Source	Description
CWE-73	cna	CWE-73 External control of file name or path

CVSS scores (1)

Score	Severity	Version	Source	Vector
7.1	HIGH	4.0	cna	CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

References (1)

https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX696604