← Back

CVE-2023-24484

nvd nist
Published: Feb 16, 2023Modified: Mar 18, 2025

JSON object

Loading...
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Exploitability: 1.8 / Impact: 3.6
Source: NVD

Description

A malicious user can cause log files to be written to a directory that they do not have permission to write to.

Affected (11)

Products: Citrix: Workspace
Citrix
1 product
Workspace
Configuration A
11 vulnerable
Vulnerable SoftwareAffected Versions
Citrix
Workspace
Before 2212
Workspace
Version 1912
Workspace
Version 1912 cu1-hf1
Workspace
Version 1912 cu1
Workspace
Version 1912 cu2
Workspace
Version 1912 cu3
Workspace
Version 1912 cu4
Workspace
Version 1912 cu5
Workspace
Version 1912 cu6
Workspace
Version 2203.1
Workspace
Version 2203.1 cu1

Related CWEs

CWE-284
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (2)

Source: secure@citrix.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.