86 matches found
EUVD-2021-10057
Malware in sbrugna...
EUVD-2023-28504
Malicious code in bioql PyPI...
EUVD-2024-47295
Malicious code in bioql PyPI...
EUVD-2023-28501
Malicious code in bioql PyPI...
PT-2025-32130
Name of the Vulnerable Software and Affected Versions affected versions not specified Description A memory corruption issue exists when handling client exceptions, potentially allowing unauthorized channel access. Recommendations At the moment, there is no information about a newer version that...
CVE-2025-6759: Citrix Virtual Apps and Desktops - Local Privilege Escalation (FIXED)
Overview During a Virtual Desktop Infrastructure VDI breakout assessment, Rapid7 identified a Local Privilege Escalation LPE vulnerability affecting Citrix Virtual Apps and Desktops. This issue was assigned CVE-2025-6759 and has a CVSS score of 7.3 High. Rapid7 observed a SYSTEM process handle wi...
Citrix Virtual Apps and Desktops Privilege Escalation (CTX694820)
The version of Citrix Virtual Apps and Desktops installed on the remote Windows host is prior to 2503, or prior to 2402 LTSR CU1 Update 1, or prior to 2402 LTSR CU2 Update 2. It is, therefore, affected by a privilege escalation vulnerability. By exploiting this vulnerability, a local,...
CVE-2025-6759
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Windows Virtual Delivery Agent for CVAD and Citrix DaaS...
PT-2025-28651 · Citrix · Citrix Virtual Apps/Desktops
Name of the Vulnerable Software and Affected Versions: Citrix Windows Virtual Delivery Agent versions prior to 2503 Citrix Windows Virtual Delivery Agent 2402 LTSR versions through CU2 Citrix Windows Virtual Delivery Agent 2203 LTSR version is not affected Description: A local privilege escalatio...
Command-line upgrade to CVAD 2203+ fails if Delivery Controller can't connect to the license server
Command-line upgrades to CVAD version 2203 or later will fail if the Delivery Controller cannot connect to the license server. Following error is seen in the installation failure log. The product version you are upgrading to requires an upgraded version of the Citrix License Server.parsing:...
Citrix Virtual Apps and Desktops: Issues with Monitor Service after upgrade to 2402 CU2
Environment has been upgraded to 2402 CU2 version. When admin invokes a cmdlet: Get-MonitorConfiguration, the error is displayed: A database operation failed and could not be recovered : Reason ? Not all Delivery Controllers are affected and cmdlet returns actual configuration on some of the...
Citrix Virtual Apps and Desktops - Unable to launch APP-V application from the VDA
When user tries to launch published app-v application there is an error displayed: The application failed to launch. This may be due to a network failure...
Citrix Virtual Apps and Desktops 2407 : Sophos Endpoint Agent gets loaded into ICA user session
Published app sessions are getting loaded with Sophos Endpoint Agent. This is seen under Workspace app Connection Center. Sophos Endpoint agent is getting loaded into all the Citrix ICA sessions. Citrix Workspace app Connection Center shows the "Sophos Endpoint Agent - Notification Icon". Sophos...
Citrix Virtual Apps and Desktop 2402 - Citrix applications could not be maximized after minimizing
Users with multiple monitors might find that after minimizing a Citrix published application on an external screen, then disconnecting and reconnecting that screen, the application fails to maximize correctly. It might appear small, in the wrong place, or seem frozen...
Enabling WPF Rendering for Citrix HDX on Multi-Session VDAs
Overview Windows Presentation Foundation WPF applications can leverage GPU acceleration in Citrix Virtual Apps and Desktops CVAD environments running Windows Multi-session OS. By enabling WPF rendering on the server’s GPU, this reduces CPU load and improves graphics performance for WPF...
Citrix Virtual Apps and Desktops 2402 CU2 expired certificate
Citrix Virtual Apps and Desktops CVAD 2402 LTSR Cumulative Update 2 CU2 2402.0.2100 contains installers and binaries signed with a now-expired code signing certificate. File signatures are considered valid if either: A timestamp was included at the time of signing, or The certificate used for...
Topaz Signature Pad as COM Port Device Disappears after Logoff
Topaz Signature will disappear after users log off on a kiosk workstation. The environment contained: Citrix Virtual Apps and Desktops version 2203 CUx Desktop of Server VDA, any supported OS Citrix Workspace App 2402 CUx Windows 10/Windows 11...
Citrix Virtual Apps and Desktops Session Recording Multiple Vulnerabilities (CTX691941)
The version of Citrix Virtual Apps and Desktops installed on the remote Windows host is prior to 2407 hotfix 24.5.200.8, 1912 LTSR prior to CU9 hotfix 19.12.9100.6, 2203 LTSR prior to CU5 hotfix 22.03.5100.11, or 2402 LTSR prior to CU1 hotfix 24.02.1200.16. It is, therefore, affected by multiple...
New Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ Misconfiguration
Cybersecurity researchers have disclosed new security flaws impacting Citrix Virtual Apps and Desktop that could be exploited to achieve unauthenticated remote code execution RCE The issue, per findings from watchTowr, is rooted in the Session Recording component that allows system administrators...
Citrix Systems Virtual Apps and Desktops 安全漏洞
Citrix Systems Virtual Apps and Desktops is virtual software from Citrix Systems, Inc. that provides virtual desktops and virtual applications for any operating system. A security vulnerability exists in Citrix Systems Virtual Apps and Desktops that stems from the ability to access privileges and...