CVE-2025-6759: Citrix Virtual Apps and Desktops - Local Privilege Escalation (FIXED)

Overview During a Virtual Desktop Infrastructure VDI breakout assessment, Rapid7 identified a Local Privilege Escalation LPE vulnerability affecting Citrix Virtual Apps and Desktops. This issue was assigned CVE-2025-6759 and has a CVSS score of 7.3 High. Rapid7 observed a SYSTEM process handle wi...

CVE-2024-6151

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual Delivery Agent for Windows used by Citrix Virtual Apps and Desktops and Citrix DaaS...

CVE-2024-6151 Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual Delivery Agent for Windows used by Citrix Virtual Apps and Desktops and Citrix DaaS...

Citrix Virtual Apps and Desktops (CVAD) policies are not applying correctly

Citrix Virtual Apps and Desktops CVAD Policies Are Not Applying Correctly...

IPv6 Network Configuration Implementation with Citrix Virtual Apps & Desktops

...

CVE-2021-22928

A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM...

Citrix Virtual Apps and Desktops Installed

Binary data citrixvirtualappsanddesktopsinstalled.nbin...

How to disable Workspace Control Session Roaming on Citrix Virtual Apps and Desktops

This article describes how to disable workspace control session roaming from occurringon Citrix Virtual Appsand Desktops...