Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix virtual apps and desktops vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2023-6184
Cross SiteScripting vulnerability in Citrix Session Recording allows malicious user to perform Cross Site Scripting
Citrix Virtual Apps And Desktops 1912
Citrix Virtual Apps And Desktops 2203
Citrix Virtual Apps And Desktops
4.3
CVSSv3
CVE-2023-24490
Users with only access to launch VDA applications can launch an unauthorized desktop
Citrix Virtual Apps And Desktops 1912
Citrix Virtual Apps And Desktops 2203
Citrix Linux Virtual Delivery Agent 2203
Citrix Linux Virtual Delivery Agent 1912
Citrix Linux Virtual Delivery Agent
Citrix Virtual Apps And Desktops
5.5
CVSSv3
CVE-2023-24486
A vulnerability has been identified in Citrix Workspace app for Linux that, if exploited, may result in a malicious local user being able to gain access to the Citrix Virtual Apps and Desktops session of another user who is using the same computer from which the ICA session is la...
Citrix Workspace
1 Github repository
7.8
CVSSv3
CVE-2023-24483
A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA.
Citrix Virtual Apps And Desktops
Citrix Virtual Apps And Desktops 1912
Citrix Virtual Apps And Desktops 2203
7.8
CVSSv3
CVE-2021-22928
A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYS...
Citrix Xendesktop 7.15
Citrix Xenapp 7.15
Citrix Virtual Apps And Desktops
Citrix Virtual Apps And Desktops 1912
8.8
CVSSv3
CVE-2020-8283
An authorised user on a Windows host running Citrix Universal Print Server can perform arbitrary command execution as SYSTEM in CVAD versions prior to 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9.
Citrix Xendesktop 7.6
Citrix Xendesktop 7.15
Citrix Xendesktop
Citrix Xenapp 7.6
Citrix Xenapp
Citrix Xenapp 7.15
Citrix Virtual Apps And Desktops
8.8
CVSSv3
CVE-2020-8269
An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM in CVAD versions prior to 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9
Citrix Xendesktop 7.6
Citrix Xendesktop 7.15
Citrix Xendesktop
Citrix Xenapp 7.6
Citrix Xenapp
Citrix Xenapp 7.15
Citrix Virtual Apps And Desktops
8.8
CVSSv3
CVE-2020-8270
An unprivileged Windows user on the VDA or an SMB user can perform arbitrary command execution as SYSTEM in CVAD versions prior to 2009, 1912 LTSR CU1 hotfixes CTX285871 and CTX285872, 7.15 LTSR CU6 hotfix CTX285341 and CTX285342
Citrix Virtual Apps And Desktops
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started