CISA order to patch “Citrix Bleed 2” vulnerability
Event Details
The Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2025-5777 (dubbed “CitrixBleed 2”) to its Known Exploited Vulnerabilities catalogue and ordered all civilian federal agencies to apply patches within 24 hours, citing active exploitation and “unacceptable risk.”
Date
11/07/2025
Event Category
- Guidance
Level of Cooperation
- National
Country
🇺🇸 United States
