Lucene search
CitrixCVE-2023-24492HistoryJul 11, 2023 - 10:15 p.m.
CVE-2023-24492
2023-07-1122:15:09
CWE-94
Citrix
web.nvd.nist.gov
44
cve-2023-24492
citrix secure access
ubuntu
vulnerability
remote code execution
nvd
CVSS3
9.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
8.6
Confidence
High
EPSS
0.003
Percentile
70.5%
A vulnerability has been discovered in the Citrix Secure Access client for UbuntuΒ which, if exploited, could allow an attacker to remotely execute code if a victim user opens an attacker-crafted link and accepts further prompts.
Affected configurations
Node
citrixsecure_access_clientRange<23.5.2
canonicalubuntu_linuxMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| citrix | secure_access_client | * | cpe:2.3:a:citrix:secure_access_client:*:*:*:*:*:*:*:* |
| canonical | ubuntu_linux | - | cpe:2.3:o:canonical:ubuntu_linux:-:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Linux"
],
"product": "Citrix Secure Access client for Ubuntu",
"vendor": "Citrix",
"versions": [
{
"lessThan": "23.5.2",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
cvelist
cvelist
CVE-2023-24492
2023-07-11 21:36:52
prion
prion
Design/Logic Flaw
2023-07-11 22:15:00
citrix
citrix
Citrix Secure Access client for Ubuntu Security Bulletin for CVE-2023-24492
2023-07-11 17:37:48
nvd
nvd
CVE-2023-24492
2023-07-11 22:15:09
CVSS3
9.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
8.6
Confidence
High
EPSS
0.003
Percentile
70.5%
Related for CVE-2023-24492