CVE-2025-5777 PoC — Citrix NetScaler ADC和Citrix NetScaler Gateway 安全漏洞

Source

https://github.com/orange0Mint/CitrixBleed-2-CVE-2025-5777

Associated Vulnerability

Title:Citrix NetScaler ADC和Citrix NetScaler Gateway 安全漏洞 (CVE-2025-5777)
Description:Citrix NetScaler ADC和Citrix NetScaler Gateway都是美国Citrix公司的产品。Citrix NetScaler ADC是一个应用程序交付和安全性平台。Citrix NetScaler Gateway是一种安全远程访问的解决方案。 Citrix NetScaler ADC和Citrix NetScaler Gateway存在安全漏洞，该漏洞源于NetScaler Management Interface输入验证不足，可能导致内存过度读取。

Description

CitrixBleed-2 Checker & Poc automatic exploit and check token.

Readme

# CitrixBleed-2-CVE-2025-5777

## checker

checker.py http_https_host_:_port.txt result.txt 8

### better you run

OPENSSL_CONF=./openssl.cnf checker.py http_https_host_:_port.txt result.txt 8

## poc

this poc automatic exploit CVE-2025-5777 and check token exsist and after valid or not.

poc.py -u https://target.example.com -v

### better you run

OPENSSL_CONF=./openssl.cnf poc.py -u https://target.example.com -v

## thanks to 

@watchTowr & @sinsinology & @Chocapikk 

 - :)

File Snapshot


 [4.0K]  /data/pocs/f71040154b0e47ec15bfc85a6859fc6481da7633
├── [3.8K]  checker.py
├── [  26]  checker_requirements.txt
├── [ 172]  openssl.cnf
├── [8.2K]  poc.py
├── [  83]  poc_requirements.txt
└── [ 482]  README.md

0 directories, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!