Citrix Virtual Apps and Desktops and Workspace App Security Updates

by | Feb 17, 2023 | ALARM

A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA. 

The vulnerability has been given the following identifier: 

CVE ID Description Vulnerability Type Pre-conditions 
CVE-2023-24483Privilege Escalation to NT AUTHORITY\SYSTEM on the vulnerable VDACWE-269: Improper Privilege ManagementLocal access to a Windows VDA as a standard Windows user

 The vulnerability affects the following supported versions of Citrix Virtual Apps and Desktops: 

Current Release (CR)

  • Citrix Virtual Apps and Desktops versions before 2212

Long Term Service Release (LTSR)

  • Citrix Virtual Apps and Desktops 2203 LTSR before CU2 
  • Citrix Virtual Apps and Desktops 1912 LTSR before CU6 

In addition, customers using Citrix Virtual Apps and Desktops Service using any of the vulnerable versions of Citrix Virtual Apps and Desktops Windows VDA are affected and need to take action.

https://support.citrix.com/article/CTX477616/citrix-virtual-apps-and-desktops-security-bulletin-for-cve202324483

Vulnerabilities have been identified that, collectively, allow a standard Windows user to perform operations as SYSTEM on the computer running Citrix Workspace app.

These vulnerabilities have the following identifiers:

CVE ID Description Vulnerability Type Pre-conditions 
CVE-2023-24484A malicious user can cause log files to be written to a directory that they do not have permission to write to.CWE-284: Improper Access Control Local user access to a system where a vulnerable version of Citrix Workspace App for Windows is later installed or uninstalled by a SYSTEM process (e.g. SCCM).
CVE-2023-24485Privilege Escalation on the system running a vulnerable version of Citrix Workspace app for WindowsCWE-284: Improper Access Control Local user access to a system at the time a vulnerable version of Citrix Workspace App for Windows is being installed or uninstalled by an Administrator or SYSTEM process (e.g. SCCM).

The vulnerability affects the following supported versions of Citrix Workspace App for Windows:

  • Citrix Workspace App versions before 2212 
  • Citrix Workspace App 2203 LTSR before CU2
  • Citrix Workspace App 1912 LTSR before CU7 Hotfix 2 (19.12.7002) 

https://support.citrix.com/article/CTX477617/citrix-workspace-app-for-windows-security-bulletin-for-cve202324484-cve202324485

Bleiben Sie immer aktuell informiert!

Wenn Sie sich in unsere Mailingliste eintragen, werden Sie zukünftig direkt informiert, sobald ein Alarm oder eine Information erstellt wird. Verpassen Sie keine sicherheitskritischen Meldungen mehr und abonnieren den Newsletter noch heute.

Invalid email address
Bitte wählen Sie Ihre Kategorie(n).
Citrix
Nutanix
Weitere
Wir versprechen, Sie nicht zuzuspammen. Sie können sich jederzeit wieder abmelden.