Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix virtual apps and desktops vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2023-6184
Cross SiteScripting vulnerability in Citrix Session Recording allows malicious user to perform Cross Site Scripting
Citrix Virtual Apps And Desktops 1912
Citrix Virtual Apps And Desktops 2203
Citrix Virtual Apps And Desktops
4.3
CVSSv3
CVE-2023-24490
Users with only access to launch VDA applications can launch an unauthorized desktop
Citrix Virtual Apps And Desktops 1912
Citrix Virtual Apps And Desktops 2203
Citrix Linux Virtual Delivery Agent 2203
Citrix Linux Virtual Delivery Agent 1912
Citrix Linux Virtual Delivery Agent
Citrix Virtual Apps And Desktops
5.5
CVSSv3
CVE-2023-24486
A vulnerability has been identified in Citrix Workspace app for Linux that, if exploited, may result in a malicious local user being able to gain access to the Citrix Virtual Apps and Desktops session of another user who is using the same computer from which the ICA session is la...
Citrix Workspace
1 Github repository
7.8
CVSSv3
CVE-2023-24483
A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA.
Citrix Virtual Apps And Desktops
Citrix Virtual Apps And Desktops 1912
Citrix Virtual Apps And Desktops 2203
7.8
CVSSv3
CVE-2021-22928
A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYS...
Citrix Xendesktop 7.15
Citrix Xenapp 7.15
Citrix Virtual Apps And Desktops
Citrix Virtual Apps And Desktops 1912
8.8
CVSSv3
CVE-2020-8283
An authorised user on a Windows host running Citrix Universal Print Server can perform arbitrary command execution as SYSTEM in CVAD versions prior to 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9.
Citrix Virtual Apps And Desktops
Citrix Xenapp
Citrix Xenapp 7.6
Citrix Xenapp 7.15
Citrix Xendesktop
Citrix Xendesktop 7.6
Citrix Xendesktop 7.15
8.8
CVSSv3
CVE-2020-8270
An unprivileged Windows user on the VDA or an SMB user can perform arbitrary command execution as SYSTEM in CVAD versions prior to 2009, 1912 LTSR CU1 hotfixes CTX285871 and CTX285872, 7.15 LTSR CU6 hotfix CTX285341 and CTX285342
Citrix Virtual Apps And Desktops
8.8
CVSSv3
CVE-2020-8269
An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM in CVAD versions prior to 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9
Citrix Virtual Apps And Desktops
Citrix Xenapp
Citrix Xenapp 7.6
Citrix Xenapp 7.15
Citrix Xendesktop
Citrix Xendesktop 7.6
Citrix Xendesktop 7.15
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started