← Back

Secure Access Client

secure_access_client

Vendor: Citrix • 6 CVEs

CVEs (6)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-0320
1Citrix
1Secure Access Client
Aug 6, 2025
Jun 17, 2025
8.6 HIGH· v4
7.8 HIGH· v3
N/A· v2
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Secure Access Client for Windows
CVE-2025-1223
1Citrix
1Secure Access Client
Apr 29, 2026
Feb 20, 2025
5.9 MEDIUM· v4
6.1 MEDIUM· v3
N/A· v2
An attacker can gain application privileges in order to perform limited modification and/or read arbitrary data in Citrix Secure Access Client for Mac
CVE-2025-1222
1Citrix
1Secure Access Client
Apr 29, 2026
Feb 20, 2025
5.9 MEDIUM· v4
6.1 MEDIUM· v3
N/A· v2
An attacker can gain application privileges in order to perform limited modification and/or read arbitrary data in Citrix Secure Access Client for Mac
CVE-2024-3661
7Cisco
CitrixF5+4 more
9Anyconnect Vpn Client
Big Ip Access Policy ManagerClient Connector+6 more
Jan 15, 2025
May 6, 2024
N/A· v4
7.6 HIGH· v3
N/A· v2
DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface....Show more
DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.Show less
CVE-2023-24492
1Citrix
1Secure Access Client
Nov 21, 2024
Jul 11, 2023
N/A· v4
8.8 HIGH· v3
N/A· v2
A vulnerability has been discovered in the Citrix Secure Access client for Ubuntu which, if exploited, could allow an attacker to remotely execute code if a victim user opens an attacker-crafted link and accepts further...Show more
A vulnerability has been discovered in the Citrix Secure Access client for Ubuntu which, if exploited, could allow an attacker to remotely execute code if a victim user opens an attacker-crafted link and accepts further prompts. Show less
CVE-2023-24491
1Citrix
1Secure Access Client
Nov 21, 2024
Jul 11, 2023
N/A· v4
7.8 HIGH· v3
N/A· v2
A vulnerability has been discovered in the Citrix Secure Access client for Windows which, if exploited, could allow an attacker with access to an endpoint with Standard User Account that has the vulnerable client ins...Show more
A vulnerability has been discovered in the Citrix Secure Access client for Windows which, if exploited, could allow an attacker with access to an endpoint with Standard User Account that has the vulnerable client installed to escalate their local privileges to that of NT AUTHORITY\SYSTEM. Show less