If you discover a security vulnerability in CitrixScan itself (not in Citrix NetScaler), please report it responsibly.
Email: security@netguard24-7.com
Please include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
We will acknowledge receipt within 48 hours and provide a timeline for resolution.
CitrixScan is a detection tool, not a vulnerability research platform. If you discover a new vulnerability in Citrix NetScaler:
- Report to Citrix first via their responsible disclosure program
- Once a CVE is assigned and a patch is available, submit a New CVE issue to add it to CitrixScan's database
This security policy covers the CitrixScan tool itself. It does not cover Citrix NetScaler products, which are maintained by Cloud Software Group.