CVE Catalog

CVE-2026-10816

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.22%

13th percentile — higher than 13% of all known CVEs

Summary

An unauthenticated attacker can read arbitrary files on NetScaler ADC and NetScaler Gateway if access to NSIP, Cluster Management IP, or SNIP with management access is enabled.

Risk Assessment

The attacker can access sensitive configuration files, passwords, or keys, leading to full device and network compromise.

Recommendation

Immediately disable management access to NSIP, Cluster Management IP, and SNIP unless absolutely required, and apply the vendor patch.

Original NVD description (English source)

Arbitrary File Read (Unauthenticated) in NetScaler ADC and NetScaler Gateway if the access to NSIP, Cluster Management IP or SNIP with management access is enabled

Vulnerability data from NVD (NIST) · CISA KEV · EPSS