Lucene search
HistoryJul 11, 2023 - 10:15 p.m.
CVE-2023-24492
citrix
secure access
ubuntu
vulnerability
remote code execution
attacker-crafted link
prompts
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
9.3
Confidence
High
EPSS
0.003
Percentile
70.5%
A vulnerability has been discovered in the Citrix Secure Access client for UbuntuΒ which, if exploited, could allow an attacker to remotely execute code if a victim user opens an attacker-crafted link and accepts further prompts.
Affected configurations
Node
citrixsecure_access_clientRange<23.5.2
canonicalubuntu_linuxMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| citrix | secure_access_client | * | cpe:2.3:a:citrix:secure_access_client:*:*:*:*:*:*:*:* |
| canonical | ubuntu_linux | - | cpe:2.3:o:canonical:ubuntu_linux:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-24492
2023-07-11 21:36:52
prion
prion
Design/Logic Flaw
2023-07-11 22:15:00
cve
cve
CVE-2023-24492
2023-07-11 22:15:09
citrix
citrix
Citrix Secure Access client for Ubuntu Security Bulletin for CVE-2023-24492
2023-07-11 17:37:48
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
9.3
Confidence
High
EPSS
0.003
Percentile
70.5%
Related for NVD:CVE-2023-24492