CVE-2026-10817
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk32th percentile — higher than 32% of all known CVEs
Summary
Insufficient input validation in NetScaler ADC and NetScaler Gateway leads to memory overread if the TCP Timestamp is enabled in the TCP Profile and associated with a virtual server (type LB, CS, VPN) or a configured service.
Risk Assessment
The risk involves potential leakage of sensitive data or disruption of network services due to reading beyond allocated memory.
Recommendation
Immediately update NetScaler ADC and NetScaler Gateway to the latest patched version and temporarily disable the TCP Timestamp option in TCP profiles if feasible.
Original NVD description (English source)
Insufficient input validation leading to memory overread in NetScaler ADC and NetScaler Gateway if the TCP TimeStamp is enabled in TCP Profile and is associated with the virtual server (of type LB, CS, VPN) or the service configured on NetScaler

