CVE-2021-22928

A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM...

EUVD-2021-10057

Malware in sbrugna...

EUVD-2023-28504

Malicious code in bioql PyPI...

EUVD-2024-47295

Malicious code in bioql PyPI...

EUVD-2023-28501

Malicious code in bioql PyPI...

PT-2025-32130

Name of the Vulnerable Software and Affected Versions affected versions not specified Description A memory corruption issue exists when handling client exceptions, potentially allowing unauthorized channel access. Recommendations At the moment, there is no information about a newer version that...

CVE-2025-6759: Citrix Virtual Apps and Desktops - Local Privilege Escalation (FIXED)

Overview During a Virtual Desktop Infrastructure VDI breakout assessment, Rapid7 identified a Local Privilege Escalation LPE vulnerability affecting Citrix Virtual Apps and Desktops. This issue was assigned CVE-2025-6759 and has a CVSS score of 7.3 High. Rapid7 observed a SYSTEM process handle wi...

Citrix Virtual Apps and Desktops Privilege Escalation (CTX694820)

The version of Citrix Virtual Apps and Desktops installed on the remote Windows host is prior to 2503, or prior to 2402 LTSR CU1 Update 1, or prior to 2402 LTSR CU2 Update 2. It is, therefore, affected by a privilege escalation vulnerability. By exploiting this vulnerability, a local,...

CVE-2025-6759

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Windows Virtual Delivery Agent for CVAD and Citrix DaaS...

PT-2025-28651 · Citrix · Citrix Virtual Apps/Desktops

Name of the Vulnerable Software and Affected Versions: Citrix Windows Virtual Delivery Agent versions prior to 2503 Citrix Windows Virtual Delivery Agent 2402 LTSR versions through CU2 Citrix Windows Virtual Delivery Agent 2203 LTSR version is not affected Description: A local privilege escalatio...

Command-line upgrade to CVAD 2203+ fails if Delivery Controller can't connect to the license server

Command-line upgrades to CVAD version 2203 or later will fail if the Delivery Controller cannot connect to the license server. Following error is seen in the installation failure log. The product version you are upgrading to requires an upgraded version of the Citrix License Server.parsing:...

Citrix Virtual Apps and Desktops: Issues with Monitor Service after upgrade to 2402 CU2

Environment has been upgraded to 2402 CU2 version. When admin invokes a cmdlet: Get-MonitorConfiguration, the error is displayed: A database operation failed and could not be recovered : Reason ? Not all Delivery Controllers are affected and cmdlet returns actual configuration on some of the...

Citrix Virtual Apps and Desktops - Unable to launch APP-V application from the VDA

When user tries to launch published app-v application there is an error displayed: The application failed to launch. This may be due to a network failure...

Citrix Virtual Apps and Desktops 2407 : Sophos Endpoint Agent gets loaded into ICA user session

Published app sessions are getting loaded with Sophos Endpoint Agent. This is seen under Workspace app Connection Center. Sophos Endpoint agent is getting loaded into all the Citrix ICA sessions. Citrix Workspace app Connection Center shows the "Sophos Endpoint Agent - Notification Icon". Sophos...

Microsoft Security Update Validation Report April 2025

Microsoft’s April 2025 security updates have passed Citrix testing the updates are listed below. The testing is not all-inclusive; all tests are executed against English only environments and issues may still be found upon implementation. Follow best practices for testing and installing software...

Citrix Virtual Apps and Desktop 2402 - Citrix applications could not be maximized after minimizing

Users with multiple monitors might find that after minimizing a Citrix published application on an external screen, then disconnecting and reconnecting that screen, the application fails to maximize correctly. It might appear small, in the wrong place, or seem frozen...

Enabling WPF Rendering for Citrix HDX on Multi-Session VDAs

Overview Windows Presentation Foundation WPF applications can leverage GPU acceleration in Citrix Virtual Apps and Desktops CVAD environments running Windows Multi-session OS. By enabling WPF rendering on the server’s GPU, this reduces CPU load and improves graphics performance for WPF...

Virtual Apps and Desktops - How to disable Microsoft Teams optimization

To disable HDX optimization for Microsoft Teams...

Microsoft Security Update Validation Report March 2025

Microsoft’s March 2025 security updates have passed Citrix testing the updates are listed below. The testing is not all-inclusive; all tests are executed against English only environments and issues may still be found upon implementation. Follow best practices for testing and installing software...

Citrix Virtual Apps and Desktops 2402 CU2 expired certificate

Citrix Virtual Apps and Desktops CVAD 2402 LTSR Cumulative Update 2 CU2 2402.0.2100 contains installers and binaries signed with a now-expired code signing certificate. File signatures are considered valid if either: A timestamp was included at the time of signing, or The certificate used for...