A configuration-specific overread in the SAML identity path has put edge appliances back in the spotlight, with rapid exploitation reported soon after disclosure.
A freshly disclosed CitrixBleed-branded flaw is already being used with public exploit code, showing how quickly identity edge devices can turn into memory-disclosure channels.
A freshly patched pre-auth overread in Citrix NetScaler shows how a small parsing flaw at the authentication edge can become a security problem with outsized consequences.
A six-bug patch cycle on a widely deployed appliance shows how quickly availability risk and session-integrity risk can meet at the network edge.