CVE-2026-13474
Denial of service via malformed HTTP/2 requests
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Denial of service via malformed HTTP/2 requests in NetScaler ADC and NetScaler Gateway if HTTP/2 is enabled in HTTP Profile and associated with the virtual server (of type LB, CS, VPN) or the service configured on NetScaler
| CWE | CWE-401 |
| Vendor | netscaler |
| Product | adc |
| Published | Jun 30, 2026 |
| Last Updated | Jun 30, 2026 |
Stay Ahead of the Next One
Get instant alerts for netscaler adc
Be the first to know when new unknown vulnerabilities affecting netscaler adc are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
NetScaler / ADC
14.1 < 72.61 13.1 < 63.18 14.1 FIPS < 72.61 13.1 FIPS and NDcPP < 37.272
NetScaler / Gateway
14.1 < 72.61 13.1 < 63.18