"The Delivery Controller failed to complete an audit of the sessions running on the VDA"

After installing of updating a Linux VDA to version 2402, the VDA registers against the DDC successfully. However, when the user tries to launch the VDA, the VDA immediately becomes unregistered and the troubleshooting tab on the DDC show the following error: The Delivery Controller failed to...

Citrix StoreFront Security Bulletin for CVE-2022-27503

A reflected cross-site scripting XSS issue has been discovered in Citrix StoreFront when it is configured to use SAML authentication. If exploited, this issue would allow an attacker to execute client-side JavaScript in the same context as a legitimate user. This issue has the following identifie...

Citrix Workspace App for Linux Security Update

A vulnerability has been identified in Citrix Workspace app for Linux that could result in a local user elevating their privilege level to root on the computer running Citrix Workspace app for Linux. The vulnerability has the following identifier: CVE ID| Description| Vulnerability Type|...

Citrix SD-WAN Security Update

Description of Problem Multiple denial of service vulnerabilities have been identified in the Citrix SD-WAN Appliance and Citrix SD-WAN Center Management Console. These vulnerabilities could permit a remote attacker to cause a denial of service by causing a host crash or by causing reduced servic...

Citrix XenServer Multiple Security Updates

Description of Problem A number of security vulnerabilities have been identified in Citrix XenServer that may allow a malicious administrator of a guest VM to compromise the host. These vulnerabilities affect all currently supported versions of Citrix XenServer up to and including Citrix XenServe...

The Server (Unknown) is Not Trusted for ICA Connections

When trying to launch applications from a published XenApp server desktop, the following error message appears: “Unable to launch your application. Contact your help desk with the following information: Cannot connect to the Citrix XenApp server. The server Unknown is not trusted for ICA...

XenServer and Citrix Hypervisor Security Update for CVE-2024-5661

An issue has been identified in both XenServer 8 and Citrix Hypervisor 8.2 CU1 LTSR which mayallow a malicious administrator of a guest VM to cause the host to become slow and/or unresponsive. This issue has the following identifier: CVE-2024-5661 CVE-2024-5661 affects all deployments. Summary CV...

CVE-2018-3639 - Citrix XenServer Security Update

Description of Problem CVE-2018-3639 Speculative Store Bypass Disable is an issue that may affect third-party software that runs in guest VMs on Citrix XenServer. This is not an issue caused by Citrix XenServer and Citrix is unaware of any means of exploiting this issue against XenServer itself...

CVE-2015-7547 - Citrix Security Advisory for glibc Vulnerability

Overview A vulnerability has been recently disclosed in the glibc getaddrinfo function. This issue could potentially allow an attacker to inject code into a process that calls the vulnerable function. The issue has been assigned the following CVE identifier: CVE-2015-7547: The vulnerable function...

Citrix Hypervisor Security Update for CVE-2024-31497

Description of Problem Versions of XenCenter for Citrix Hypervisor 8.2 CU1 LTSR included a 3rd-party component, PuTTY, that is used to enable SSH connections from XenCenter to guest VMs when the “Open SSH Console” button is selected. The inclusion of PuTTY with XenCenter for Citrix Hypervisor 8.2...

iOS Workspace Error "Http/1.1 Internal Server Error 43549" via Gateway nFactor Authentication

Workspace for iOS shows "Http/1.1 Internal Server Error 43549" after successful authentication via NetScaler Gateway. Workspace for Windows works fine. AAA nFactorauthentication profile is configured in NetScaler Gateway...

Citrix Hypervisor Security Bulletin for CVE-2022-23825 and CVE-2022-29900

AMD has disclosed an issue that affects AMD CPU hardware and may allow code inside a guest VM to infer the contents of RAM memory elsewhere on the host. Although this is not an issue in the Citrix Hypervisor product itself, Citrix is releasing hotfixes that include product changes to mitigate thi...

Citrix XenMobile 10.x Multiple Security Updates

Description of Problem A number of security vulnerabilities have been identified in Citrix XenMobile Server. The vulnerabilities have been assigned the following CVE numbers. Affecting XenMobile Server 10.7 and 10.8: CVE-2018-10653 High: XML External Entity XXE Processing Vulnerability in Citrix...

Citrix Hypervisor Multiple Security Updates

Description of Problem Several issues have been discovered that affect Citrix Hypervisor 8.2 CU1 LTSR and may allow malicious privileged code in a guest VM to: i Compromise an AMD-based host via a passed through PCI device: CVE-2023-34326 ii Compromise the host when a specific administrative acti...

Citrix Hypervisor Security Update

An issue has been identified in AMD CPU hardware that may allow code in a guest VM to infer the value of in-memory data in other guest VMs. Although this is not an issue in the Citrix Hypervisor product itself, Citrix is releasinghotfixes that include mitigations for this hardware issue. This iss...

Citrix XenServer Multiple Security Updates

Description of Problem A number of security vulnerabilities have been identified in Citrix XenServer that may allow a malicious administrator of a guest VM to compromise the host. These vulnerabilities affect all currently supported versions of Citrix XenServer up to and including Citrix XenServe...

Citrix Hypervisor Multiple Security Updates

Description of Problem Several issues have been identified within Citrix Hypervisor, which could, if exploited, allow: privileged code in a PV guest VM to read a single uninitialized 4kB page of memory that may contain data left by a previous VM privileged code in a guest VM to cause the host to...

Citrix Hypervisor Security Update

Description of Problem A number of vulnerabilities have been found in Citrix Hypervisor formerly Citrix XenServer that allow the host to be compromised by: i. Privileged code in a guest VM that has been assigned a PCI passthrough device ii. Privileged code in a PV guest VM iii. Unprivileged code ...

CVE-2018-3665 - Citrix XenServer Security Update

Description of Problem An issue has been identified in certain CPUs that may allow code running in a guest VM to read data from another process in the same VM or another VM running on the same host. The data that can be read is limited to specific CPU registers rather than memory or disk storage;...

Citrix Hypervisor Security Update

Description of Problem Several security issues have been identified in Citrix Hypervisor formerly Citrix XenServer that may allow privileged code in a guest VM to cause the host to crash or become unresponsive. In addition, unprivileged code in a PV guest VM may be able to cause that guest VM to...

Citrix Hypervisor Security Bulletin for CVE-2022-33745

A security issue has been identified in Citrix Hypervisor 7.1 LTSR CU2 that may allow privileged code in a PV guest VM to fail to perform management operations. The issue has the following CVE identifier: CVE-2022-33745...

Citrix Endpoint Management (CEM) Security Update

Description of Problem Multiple vulnerabilities have been discovered inCitrix Endpoint Management CEM,also referred to asXenMobile. These vulnerabilitieshavethe following identifiers: CVE-2020-8208 CVE-2020-8209 CVE-2020-8210 CVE-2020-8211 CVE-2020-8212 CVE-2020-8253 The following versions ofCitr...

CVE-2019-11634 - Improper Access Control Vulnerability in AppDNA

Description of Problem A vulnerability has been identified in AppDNA that could result in access controls not being enforced when accessing the web console potentially allowing privilege escalation and remote code execution. This vulnerability has been assigned the following CVE number: •...

Citrix XenServer Multiple Security Updates

Description of Problem A number of security vulnerabilities have been identified in Citrix XenServer that may allow a malicious administrator of a guest VM to compromise the host. These vulnerabilities affect all currently supported versions of Citrix XenServer up to and including Citrix XenServe...

Citrix Hypervisor Security Bulletin for CVE-2022-42316, CVE-2022-42317 & CVE-2022-42318

Description of Problem Several security issues have been identified in Citrix Hypervisor 8.2 LTSR CU1, each of which may allow a privileged user in a guest VM to cause part of the management service to become unresponsive, resulting in the inability to create new guests or modify the configuratio...

Citrix XenServer Security Update

Description of Problem A number of security vulnerabilities have been identified in Citrix XenServer that have deployment-dependent impacts. These issues affect the following supported versions of Citrix XenServer: Citrix XenServer 7.6 Citrix XenServer 7.5 Citrix XenServer 7.1 LTSR CU1 Citrix...

CVE-2017-15597 - Citrix XenServer Security Update

Description of Problem A security vulnerability has been identified in Citrix XenServer that may allow a malicious administrator of a guest VM to compromise the host. This vulnerability affects all currently supported versions of Citrix XenServer up to and including Citrix XenServer 7.2. The...

Citrix Hypervisor Security Update.

Description of Problem A vulnerability has been found in Citrix Hypervisor formerly Citrix XenServer that may allow an unauthenticated attacker with the ability to send traffic to a host over a management or storage network to cause the host to crash. This vulnerability is identified as: •...

Citrix Hypervisor Security Update for CVE-2023-39368 and CVE-2023-38575

Description of Problem Intel has disclosed several security issues affecting certain Intel CPUs. Although these are not vulnerabilities in the Citrix Hypervisor product itself, for the convenience of our customers we are providing a hotfix that includes updated Intel microcode to mitigate these C...

Citrix SDWAN Security Bulletin for CVE-2024-2049

A vulnerability has been identified that impacts Citrix SD-WAN Affected Versions: The vulnerability affects the following supported versions of Citrix SD-WAN SD-WAN Standard/Premium Editions on or after 11.4.0 and before 11.4.4.46 Summary: SDWAN contains the vulnerability mentioned below...

Citrix Workspace App: "An account is not configured. Please contact your administrator."

User sees a dialog box from Citrix Workspace: An account is not configured. Please contact your administrator...

Citrix SD-WAN Multiple Security Updates

Description of Problem Multiple vulnerabilities have been identified in the management interface of Citrix NetScaler SD-WAN physical appliances and virtual appliances. Collectively these vulnerabilities could allow an unauthenticated attacker with access to the management interface to compromise...

CVE-2017-17549 - Information Disclosure in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway Client TLS Handshake

Description of Problem A vulnerability has been identified in the Citrix NetScaler Application Delivery Controller ADC and NetScaler Gateway Packet Engine that could result in the disclosure of cleartext traffic from the backend client TLS handshake. This vulnerability only affects connections...

CVE-2016-7777 - Citrix XenServer Security Update

Description of Problem A security vulnerability has been identified in Citrix XenServer that may allow malicious user code within an HVM guest VM to read or modify the contents of certain registers belonging to other tasks within that same guest VM. This vulnerability affects all currently...

NetScaler Console, Agent and SDX (SVM) Security Bulletin for CVE-2024-6235 and CVE-2024-6236

Description of Problem Two vulnerabilities have been discovered in NetScaler Console formerly NetScaler ADM, NetScaler SDX SVM, and NetScaler Agent. Refer to below for further details: Affected Versions The following supported version of NetScaler Console formerly NetScaler ADM is affected by...

PVS 1912CU5 on Windows 2012 R2 with KB501874: The specified AuthGroup does not exist

PVS console fails to login with error: "The specified AuthGroup does not exist"...

Workspace error 2306 happen when ICA file located in path which contains Chinese characters

Workspace error 2306 happen when ICA file located in path which contains Chinese character. Error message "Could not find the file named "C:??\.ica. Please check your installation , or contact your administrator."...

Citrix Application Delivery Controller, Citrix Gateway, and Citrix SD-WAN WANOP appliance Security Update

Description of Problem Multiple vulnerabilities have been discovered in Citrix ADC formerly known as NetScaler ADC, Citrix Gateway formerly known as NetScaler Gateway and Citrix SD-WAN WANOP appliance models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could result...

Citrix Hypervisor Security Update

Description of Problem Two issues have been identified in Citrix Hypervisor that may, in certain configurations, allow privileged code in an HVM guest VM to execute code in the control domain, potentially compromising the host. These vulnerabilities affect all currently supported versions of Citr...

Licensing - We encounter the error "Citrix license server unavailable" in Citrix Studio.

After successfully upgrading the Citrix licensing server to version 11.17.2 build 51000, we encounter the error "Citrix license server unavailable" in Citrix Studio. The error in Licensing Manager "The License Activation Service entitlement could not be retrieved, Check your connection to License...

CVE-2020-6175 - Citrix SD-WAN Security Update

Description of Problem An information disclosure vulnerability has been identified in the Citrix SD-WAN Appliance. This vulnerability could allow an unauthenticated attacker to perform a man-in-the-middle attack against management traffic. The vulnerability has been assigned the following CVE...

CVE-2012-5161 - Vulnerability in Citrix XenApp could result in arbitrary code execution

Description of Problem A vulnerability has been identified in the XML Service interface of XenApp that could potentially be used by a remote, unauthenticated attacker to execute arbitrary code in the context of a service account on a XenApp server. The vulnerability could potentially be exploited...

PVS configuration wizard error - Unable to communicate with license server

When upgrading the PVS farm to PVS 2402, PVS configuration wizard could not progress further if "Validate license server communication" was checked, displaying an error "Unable to communicate with the license server, or the license server version is not compatible with this version of Citrix...

Citrix ShareFile Storage Zones Controller Security Update

A security issue has been identified in Citrix ShareFile storage zones controller which, if exploited, would allow an unauthenticated attacker to remotely compromise the storage zones controller. The issue has been given the following identifier:CVE-ID| Description| Type| Pre-requisites...

Citrix DaaS 2402 CU2 - MCS Catalog update fails with MDM error

StudioErrorId : ProvisioningTaskError ErrorCategory : NotSpecified TaskState : FailedToUnregisterMasterImageFromMdm TaskStateInformation : Terminated ErrorId : FailedToUnregisterMasterImageFromMdm Operation : ImagePreparation ErrorMessage : A problem was detected while unregistering from the MDM...

Event: 1020 Connection Validation failed on Domain "for user" for reason 'Deny'

SSL Certificate handshake is not successful for ICA sessions since the VDA's are not enabled with SSL communication. Mismatch of License edition configured under Studio Licensing...

Citrix Provisioning - SoapService errors in the event viewer after installing 2042 CU2

Since installing 2402 CU2 there are multiple errors in the event viewer. The event logged during Citrix PVS Soap Server start: Source: SoapService Event ID: 1 Level: Error Event Data:MapiException: ErrorCodeOtherException An unexpected MAPI error occurred. The event logged every 5 minutes: Source...

Citrix Hypervisor Security Bulletin for CVE-2020-35498

An issue has been identified in Citrix Hypervisor 8.2 LTSR CU1 Hotfix XS82ECU1008 only that may allow malicious network traffic to cause subsequent packets to be dropped. This issue has the following identifier: CVE ID| Description| Type| Pre-requisites ---|---|---|--- CVE-2020-35498| Malicious...

Citrix XenServer Multiple Security Updates

Description of Problem A number of security vulnerabilities have been identified in Citrix XenServer that may allow malicious code running in a PV guest VM to compromise the host and malicious privileged code running in an HVM guest VM to crash the host. These vulnerabilities affect all currently...

Citrix SD-WAN Multiple Security Updates

Description of Problem Multiple vulnerabilities have been identified in the management console of the Citrix SD-WAN Center and NetScaler SD-WAN Center. Multiple Vulnerabilities have also been identified on the Citrix SD-WAN Appliance and NetScaler SD-WAN Appliance. Collectively, these...