What is CVE-2025-12101?

CVE-2025-12101 is a vulnerability in Netscaler Adc, classified under Cross-site Scripting. Published 2025-11-11.

Is CVE-2025-12101 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

XSS in Netscaler Adc

CVE-2025-12101

Cross-Site Scripting (XSS) in NetScaler ADC and NetScaler Gateway when the appliance is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.017 (82.7th percentile) — read the EPSS interpretation.

Affected products

Netscaler Adc — versions 14.1, 13.1, 13.1-FIPS and NDcPP
Netscaler Gateway — versions 14.1, 13.1, 13.1-FIPS and NDcPP

Weakness classification (CWE)

CWE-79 — Cross-site Scripting

Public proof-of-concept exploits

6h4ack/CVE-2025-12101-checker
boneys/CVE-2025-12101-Scanner-PoC

References

support.citrix.com/support-home/kbsearch/article

Frequently asked questions

What is CVE-2025-12101?: CVE-2025-12101 is a vulnerability in Netscaler Adc, classified under Cross-site Scripting. Published 2025-11-11.
Is CVE-2025-12101 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.