BugZero | Citrix NetScaler BugID NSHELP-39847 - In an nFactor authentication scenario, a temporary...

Citrix NetScaler - Defect ID: NSHELP-39847

In an nFactor authentication scenario, a temporary account lockout might occur, preventing legitimate users from logging in to NetScaler. This issue arises only when both of the following conditions are met: maxLoginAttempts value is configured in nFactor authentication and the user name 'Anonymous' is entered repeatedly, exceeding the configured maxLoginAttempts value. A passwordless factor precedes any password-based mechanism in the nFactor authentication configuration.

Citrix NetScaler - Defect ID: NSHELP-39847

In an nFactor authentication scenario, a temporary account lockout might occur, preventing legitimate users from logging in to NetScaler. This issue arises only when both of the following conditions are met: maxLoginAttempts value is configured in nFactor authentication and the user name 'Anonymous' is entered repeatedly, exceeding the configured maxLoginAttempts value. A passwordless factor precedes any password-based mechanism in the nFactor authentication configuration.

Last updated on April 28th, 2026

BugZero Risk Score
0.0 Coming soon

Overall: N/A

Severity: N/A

Community: N/A

Lifecycle: N/A

What is the BugZero Risk Score?

Citrix NetScaler Integration

Learn more about where this data comes from

Citrix NetScaler Integration

Learn more

BugZero Plan

Streamline upgrades with automated vendor bug scrubs

BugZero Plan

Learn more

BugZero Prevent

Wish you caught this bug sooner? Get proactive today.

BugZero Prevent

Learn more

Bug Details

Status: Fixed

Description

The vendor has published 1 unique mention(s) for this bug: 1. In an nFactor authentication scenario, a temporary account lockout might occur, preventing legitimate users from logging in to NetScaler. This issue arises only when both of the following conditions are met: maxLoginAttempts value is configured in nFactor authentication and the user name 'Anonymous' is entered repeatedly, exceeding the configured maxLoginAttempts value. A passwordless factor precedes any password-based mechanism in the nFactor authentication configuration. Modules: 1. Authentication, authorization, and auditing Latest urls for this bug: 1. https://docs.netscaler.com/en-us/updates?product=NetScaler%20ADC%20%28includes%20NetScaler%20Gateway%29&version=13.1&build=59.22 2. https://docs.netscaler.com/en-us/updates?product=NetScaler%20ADC%20%28includes%20NetScaler%20Gateway%29&version=14.1&build=51.80

Change history

2026-04-28 Added: 13.1 Build 59.22, 14.1 Build 51.80

2026-04-28 Removed: Build 13.1-59.22, Build 14.1-51.80

2025-10-22 Removed: Build 13.1-59.19, Build 14.1-51.72

2025-09-29 Added: Build 14.1-51.80

2025-09-11 Added: Build 13.1-59.19, Build 13.1-59.22, Build 14.1-51.72

Top Citrix NetScaler Defects

Defect ID: NSHELP-43462
In pooled licensing mode, for NetScaler SDX devices, only the Platinum edition is allocated. Standard and Advanced editions are not allocated even when values are provided.
Defect ID: NSHELP-42663
NetScaler BLX instance upgrades initiated through NetScaler Console fail even when NetScaler BLX instances are up and operational. This issue occurs because the pre-upgrade check incorrectly reports the instances as unreachable, which prevents the successful upgrade.
Defect ID: NSHELP-42818
This issue will impact you if you have an SDX migrated or migrating from any type of NetScaler local license (fixed capacity subscription or perpetual license) file based licensing to any type of license with LAS based licensing and the legacy file-based licenses have not been deleted from the SVM. Impact: If there is any local legacy file-based license yet existing on the SVM after having transitioned to LAS, then the expiry of the file-based license triggers the un-licensing of the SDX (SVM and VPX on SDX) on the date of that license file expiry. Workaround: Delete the local file-based license(s) on the SVM after the migration to LAS has been done successfully. The file-based licenses would be located in SVM folder /mpsconfig/license and must be deleted from this folder using the shell prompt.
Defect ID: NSNET-33932
On NetScaler VPX-Linux deployments, memory allocation errors might occur when you configure route redistribution (connected, RIP, or RIPng routes) on OSPF6. These errors can disrupt the routing functionality.
Defect ID: NSHELP-42494
Uploading the LAS activation blob from the NetScaler GUI might fail with the error Invalid Object name.

Ready to prevent the next vendor outage?

Get a demo

Citrix NetScaler - Defect ID: NSHELP-39847

Citrix NetScaler - Defect ID: NSHELP-39847

Last updated on April 28th, 2026

BugZero Risk Score0.0 Coming soon

Bug Details

Links

Top Citrix NetScaler Defects

Ready to prevent the next vendor outage?

BugZero Risk Score
0.0 Coming soon