Are we bleeding out? Enjoy our analysis of CitrixBleed 2, aka CVE-2025-5777 - the "new" Citrix NetScaler Memory Leak vulnerability.
We've been using this mechanism to identify vulnerable systems, and hope it helps the teams that need it.. enjoy!
https://labs.watchtowr.com/how-much-more-must-we-bleed-citrix-netscaler-memory-disclosure-citrixbleed-2-cve-2025-5777
watchTowr
npub1r4…2u230
2025-07-04 19:17:37 UTC
Author Public Key
npub1r4a3cqjhh06tmrex84st3w20407uuq3w4q2m5v3mcu86ffzdlchqj2u230Seen on
wss://relay.momostr.pinkPublished at
2025-07-04 19:17:37 UTCEvent JSON
{
"id": "27b7d0c174475d63b23f39fdba2b7e307f0b4aaa55e61a9da89223306bb58087",
"pubkey": "1d7b1c0257bbf4bd8f263d60b8b94fabfdce022ea815ba323bc70fa4a44dfe2e",
"created_at": 1751656657,
"kind": 1,
"tags": [
[
"proxy",
"https://bird.makeup/users/watchtowrcyber/statuses/1941214837406855255",
"web"
],
[
"proxy",
"https://bird.makeup/users/watchtowrcyber/statuses/1941214837406855255",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://bird.makeup/users/watchtowrcyber/statuses/1941214837406855255",
"pink.momostr"
],
[
"-"
]
],
"content": "Are we bleeding out? Enjoy our analysis of CitrixBleed 2, aka CVE-2025-5777 - the \"new\" Citrix NetScaler Memory Leak vulnerability.\n\nWe've been using this mechanism to identify vulnerable systems, and hope it helps the teams that need it.. enjoy!\n\nhttps://labs.watchtowr.com/how-much-more-must-we-bleed-citrix-netscaler-memory-disclosure-citrixbleed-2-cve-2025-5777",
"sig": "b12d333594ded6b2fc5d8ef9f7e650a8f9793212e564ed73f7d10f06d83140f3a0771cdff1f76869fed33eca32278849fc6a3170aa9e5cb72e0bbe358caf1b95"
}