Lucene search

K
cvelistCitrixCVELIST:CVE-2023-24485
HistoryFeb 16, 2023 - 12:00 a.m.

CVE-2023-24485 Privilege Escalation on the system running a vulnerable version of Citrix Workspace app for Windows

2023-02-1600:00:00
CWE-284
Citrix
www.cve.org
vulnerabilities
citrix
windows
privilege escalation

7.9 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

Vulnerabilities have been identified that, collectively, allow a standard Windows user to perform operations as SYSTEM on the computer running Citrix Workspace app.

CNA Affected

[
  {
    "vendor": "Citrix",
    "product": "Citrix Workspace App for Windows",
    "versions": [
      {
        "version": "Citrix Workspace App versions",
        "status": "affected",
        "lessThan": "2212",
        "versionType": "custom",
        "changes": [
          {
            "at": "2203 LTSR before CU2 ",
            "status": "unaffected"
          },
          {
            "at": "1912 LTSR before CU7 Hotfix 2 (19.12.7002) ",
            "status": "unaffected"
          }
        ]
      }
    ]
  }
]

7.9 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

Related for CVELIST:CVE-2023-24485