Virtual Apps And Desktops

virtual_apps_and_desktops

Vendor: Citrix • 9 CVEs

CVEs (9)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-6759 1Citrix 1Virtual Apps And Desktops Aug 6, 2025 Jul 8, 2025 7.3 HIGH· v4 7.8 HIGH· v3 N/A· v2 Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Windows Virtual Delivery Agent for CVAD and Citrix DaaS
CVE-2024-6151 1Citrix 1Virtual Apps And Desktops Jul 25, 2025 Jul 10, 2024 8.5 HIGH· v4 7.8 HIGH· v3 N/A· v2 Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual Delivery Agent for Windows used by Citrix Virtual Apps and Desktops and Citrix DaaS
CVE-2023-6184 1Citrix 1Virtual Apps And Desktops Nov 21, 2024 Jan 18, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 Cross SiteScripting vulnerability in Citrix Session Recording allows attacker to perform Cross Site Scripting
CVE-2023-24490 1Citrix 2Linux Virtual Delivery Agent Virtual Apps And Desktops Nov 21, 2024 Jul 10, 2023 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Users with only access to launch VDA applications can launch an unauthorized desktop
CVE-2023-24483 1Citrix 1Virtual Apps And Desktops Mar 18, 2025 Feb 16, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA.
CVE-2021-22928 1Citrix 3Virtual Apps And Desktops XenappXendesktop Nov 21, 2024 Aug 5, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed...Show more A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM.Show less
CVE-2020-8283 1Citrix 3Virtual Apps And Desktops XenappXendesktop Nov 21, 2024 Dec 14, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An authorised user on a Windows host running Citrix Universal Print Server can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hot...Show more An authorised user on a Windows host running Citrix Universal Print Server can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9.Show less
CVE-2020-8270 1Citrix 1Virtual Apps And Desktops Nov 21, 2024 Nov 16, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An unprivileged Windows user on the VDA or an SMB user can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285871 and CTX285872, 7.15 LTSR CU6 hotfix CTX285341 and CT...Show more An unprivileged Windows user on the VDA or an SMB user can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285871 and CTX285872, 7.15 LTSR CU6 hotfix CTX285341 and CTX285342Show less
CVE-2020-8269 1Citrix 3Virtual Apps And Desktops XenappXendesktop Nov 21, 2024 Nov 16, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9