CVE-2016-4810 - Vulnerability in Citrix Studio Could Result in Insecure Access Policy Configuration

Description of Problem A vulnerability has been identified in Citrix Studio that could allow Access Policy rules to be set insecurely on the Citrix XenDesktop Delivery Controller. This vulnerability affects the following product versions: Citrix XenDesktop 7.x between versions 7.0 and 7.6...

Citrix Provisioning Security Bulletin CVE-2024-6150

Description of Problem A vulnerability has been discovered that impacts Citrix Provisioning. Refer to below for further details: Affected Versions The vulnerability affects the following supported versions of Citrix Provisioning Current Release CR Citrix Provisioning versions before 2402 Long Ter...

Citrix Secure Access client for Ubuntu Security Bulletin for CVE-2023-24492

Vulnerabilities have been discovered in Citrix Secure Access client for Ubuntu previously Citrix Gateway VPN client for Ubuntu. The following supported versions are affected by the vulnerability: Versions before 23.5.2 The issue has the following identifier: CVE ID| Affected Products| Description...

WEM - Exception: Failed to determine site for agent machine

WEM Agent does not get registered. Agent log 4:41:56 PM Exception - VuemAgentServiceConfigurationHelper.UpdateConfigurationSet : Failed to determine site for agent machine. 4:41:56 PM Exception - VuemAgentServiceConfigurationHelper.ReadRepositorySettings : Error happened while getting global...

Errors logging off the endpoints while having active published apps - “CGPPowerNotifWndCls: wfica23.exe – Application error”

Users are reporting an error when logging off from their workstations while havingactive published app sessions The users are not closing the published app before logging off the Worksstation. Users utilize Windows 10 machines with Imprivata to badge-in/badge-out Agent 6.3. When they badge in,...

"Citrix gateway plug-in for java is not supported" on all web browsers except IE

After upgrading ADCsoftware to 13.0 7+ The following isthe error message users will see on web browsers: Citrix Gateway Plug-in for Java is not supported. For further help or information, contact your help desk or system administrator."...

CVE-2019-13609 - CRLF Vulnerability in Citrix License Server for Windows and VPX

Description of Problem A Carriage Return Line Feed CRLF injection vulnerability has been identified in Citrix License Server for Windows and VPX that could allow an unauthenticated attacker to bypass authentication and allow a malicious website to read or modify license server data of an existing...

CVE-2014-8580 - Authentication Flaw in Citrix NetScaler Application Delivery Controller and NetScaler Gateway Could Result in Unauthorised Access to Network Resources

Description of Problem An authentication flaw has been identified in certain configurations of Citrix NetScaler ADC and NetScaler Gateway that could allow an authenticated user to obtain unauthorised access to network resources for another authenticated user. This flaw affects the following...

CVE-2017-14602 - Authentication Bypass Vulnerability in the Management Interface of Citrix NetScaler SD-WAN/CloudBridge 4000, 4100, 5000 and 5100 WAN Optimization Edition Appliances

Description of Problem A vulnerability has been identified in the management interface of the Citrix NetScaler SD-WAN/CloudBridge 4000, 4100, 5000 and 5100 WAN Optimization Edition appliances. This vulnerability, if exploited, could allow an attacker with access to the management interface of the...

Error: "Power State Unknown" "CDS_EVENT_HOSTING_FAILED_POWER_ACTION" in XenDesktop

Machines in Desktop Studio or Desktop Director display a Power State of Unknown. CDSEVENTHOSTINGFAILEDPOWERACTION The Citrix Broker Service detected that power action '%1' on virtual machine '%2' failed. This problem is most likely due to a host issue. Check that the configuration of the virtual...

CVE-2016-5433 - TLS Certificate Validation Vulnerability in Citrix iOS Receiver

Description of Problem A vulnerability has been identified in Citrix iOS Receiver that could result in TLS certificates being incorrectly validated. This vulnerability has been assigned the following CVE number: CVE-2016-5433: TLS Certificate Validation Vulnerability in Citrix iOS Receiver. This...

PVS boot fails for Server 2025 based PVS vdisks running on Azure and Hyperv after windows update

When applying windows updates to a PVS vdisk with Server 2025 which is running on Azure or Hyper-V, after rebooting to finish installing windows updates, PVS boot fails. Issue when applying windows updates to a PVS Streamed server 2025 vdisk: 1. The vdisk is booted in read/write mode 2. Windows...

The operation is blocked. Session Recording Administrator logging failed

The operation is blocked. Session Recording Administrator logging failed ,when change session recording policies and session recording properties Deselect all the require SSL for application pool of session recording website in iis, issue remains Set...

PVS Login error: Error "the domain\user does not have access to the farm" or "The specified AuthGroup does not exist" when Trying to Connect to PVS Farm

When trying to connect to a PVS Farm through the PVS Console, the following error is displayed and you cannot connect to the Farm. Error : "the domain\user does not have access to the farm" Error : "The specified AuthGroup does not exist"...

CVE-2016-6276 - Vulnerability in Citrix Linux VDA (formerly known as Linux Virtual Desktop) Could Result in Privilege Escalation

Description of Problem A vulnerability has been identified in the Linux Virtual Delivery Agent VDA component of Citrix XenDesktop that could allow a local user to execute commands as root on the Linux VDA. The vulnerability affects all versions of the Citrix Linux VDA earlier than version 1.4.0...

Error 2320 - Cannot start apps. Please run Reset Citrix Workspace to resolve a lockdown conflict for LegacyLocalUserNameAndPassword

When trying to launch the applications through the Native Workspace App you get an error stating 'Cannot start apps. Please run Reset Citrix Workspace to resolve a lockdown conflict for LegacyLocalUserNameAndPassword'. Resetting Workspace App does not resolve the issue...

CVE-2017-9231 - XML External Entity (XXE) Processing Vulnerability in Citrix XenMobile Server 10.x and 9.x

Description of Problem An XML External Entity XXE processing vulnerability has been identified in Citrix XenMobile Server that could allow an unauthenticated attacker to retrieve potentially sensitive information from the server. This vulnerability has been assigned the following CVE number:...

XenServer and Citrix Hypervisor Security Update for CVE-2025-27462, CVE-2025-27463, CVE-2025-27464

Description of Problem Issues have been identified in the XenServer VM Tools for Windows that allow an attacker who has the ability to execute arbitrary unprivileged code within a guest Windows VM to compromise that same VM. This issue affects Windows VMs running on either XenServer 8.4 and Citri...

Hotfix XS82ECU1072 - For Citrix Hypervisor 8.2 Cumulative Update 1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2 Cumulative Update 1. Note: This hotfix is available only to customers on theCustomer Success Servicesprogram. Information About this Hotfix Prerequisite| None ---|--- Post-update tasks| None Content live...

How to enable Teams Optimization with Microsoft's new VDI Optimization engine - SlimCore

Microsoft has released a new VDI solution for Teams. This is a how-to guide detailing the steps necessary to enable the SlimCore Optimization for Teams. We hope this guide will ease your effort to enable the new solution in your environment. If you have further feedback that you want to share wit...

Citrix SDWAN Center Security Update

Description of Problem Multiple vulnerabilities have been discovered in Citrix SD-WAN Center that, if exploited, could allow an unauthenticated attacker with network access to SD-WAN Center to perform arbitrary code execution as root. These vulnerabilities have the following identifiers: CVE|...

Critical Error: "An error occurred communicating with the Server" when adding a server to a store

When adding a server to a store in PVS console, the console hangs, then after a few seconds the message Critical Error: "An error occurred communicating with the Server" is seen, and the soap service crashes. A soap service crash dump may show an exception due to the stack overflow, where it has...

How do I resolve a failed Cloud Connector maintenance

A Cloud Connector will enter maintenance mode for a number of reasons including software updates. Only one connector will be put into maintenance mode at a time. This ensures that there are other connectors available to handle service requests. In some cases, the Cloud Connector may fail to updat...

CVE-2016-5302 - Citrix XenServer Security Update

Description of Problem A security vulnerability has been identified in XenServer 7.0 that may allow an attacker on the management network who is in possession of Active Directory credentials for an AD account that is not authorised to manage a XenServer host to compromise that host. The following...

Citrix Cloud Intermittent loss of connectivity to On-Prem AD

When attempting to run MCS Process - Ran into issues contacting the On-Prem Active Directory Citrix.CloudServices.ADAgent EventID 10102 Errors: Message=Unable to connect to the forest associated with domain "DOMAINNAME.local"...

NetScaler Agent 13.1/14.1: How to Change the nsroot Password for NetScaler Agent via CLI

Requirement to change nsroot password for NetScaler Agent...

CVE-2019-17366 - Citrix Application Delivery Management (ADM) Console Security Update

Description of Problem An authorisation bypass vulnerability was discovered in the Citrix Application Delivery Management ADM server. The vulnerability allows a Citrix ADM user with read-only privilege to access a managed instances with admin level permissions. The following deployment scenarios...

CVE-2017-14602 - Authentication Bypass Vulnerability in Citrix NetScaler ADC and NetScaler Gateway Management Interface

Description of Problem A vulnerability has been identified in the management interface of Citrix NetScaler Application Delivery Controller ADC and NetScaler Gateway that, if exploited, could allow an attacker with access to the NetScaler management interface to gain administrative access to the...

CVE-2016-5109 - Authentication bypass vulnerability in Citrix Worx Home for iOS and Citrix MDX Toolkit for iOS

Description of Problem A vulnerability has been identified that affects iOS applications using the XenMobile MDX Toolkit. An attacker with physical access to the device could bypass in-application Apple Touch ID authentication in some cases where re-authentication is required. This vulnerability...

CVE-2014-4700 - Vulnerability in Citrix XenDesktop could result in unauthorized access to another user's desktop

Description of Problem A vulnerability has been identified in Citrix XenDesktop that could result in a user gaining unauthorized interactive access to another user’s desktop. This vulnerability affects a specific, non-default configuration of Citrix XenDesktop 7 all versions up to and including...

NetScaler RDP proxy -14.1- How to configure RDP proxy with RDS server

This article explains how to configure an RDP Proxy Gateway with an RDS server. Key Points to Note: -If you are using an RDS server, you will need an RDP server profile where the RDP IP is set as the RDS server IP. -For the RDP Host, enter the FQDN of the Gateway Virtual Server. This is required...

Mac Workspace error "This store doesn't exist. Please retry or contact support"

After plugging-in Gateway URL on Mac Workspace and entering credentials, Workspace prompt error "This store doesn't exist. Please retry or contact support"...

Error: Identity Assertion Logon failed Unrecognized Federated Authentication Service

Citrix FAS configured for authentication. Published Desktop or Published Application fails to launch with error: "Identity Assertion Logon failed. Unrecognized Federated Authentication Service"...

Citrix Gateway Service – Points-of-Presence (PoPs)

In order to ensure business continuity and assure quality of service for customers using Citrix Gateway service for HDX proxy, we are expanding the number of PoPs available globally. This change impacts Citrix Workspace and Citrix Virtual Apps & Desktops service customers. Customers may see netwo...

CVE-2019-12044 - Buffer Overflow Vulnerability in Citrix ADC and Citrix NetScaler Gateway

Description of Problem A buffer overflow vulnerability has been identified in Citrix ADC and Citrix NetScaler Gateway which could possibly result in a denial-of-service in a specific configuration. This vulnerability has been assigned the following CVE number: • CVE-2019-12044: Buffer overflow...

CVE-2017-7219 - Heap Overflow Vulnerability in Citrix NetScaler Gateway Could Result in Arbitrary Code Execution

Description of Problem A heap overflow vulnerability has been identified in Citrix NetScaler Gateway that could allow a remote, authenticated user to execute arbitrary commands on the NetScaler Gateway appliance as a root user. The following vulnerability has been addressed: CVE-2017-7219 High:...

CVAD: How to install Citrix Profile Management WMI Plug-in on the VDA

This article lists the steps to install the Citrix Profile Management WMI Plug-in on the VDA...

How to Enable Logging for Citrix Director

This article contains information about logging for Citrix Director. To learn about Citrix Director, please visit Citrix Documentation -Director...

[NetScaler] SDX reports "Appliance is running in grace" Error

SDX has instance license CNSINSTCCS checked from ADM. And SDX may report error "Appliance is running in grace. System will loose capacity after XYZ hours"...

Citrix uberAgent Security Bulletin for CVE-2024-6677

Description of Problem A vulnerability has been discovered in Citrix uberAgent, which, if exploited, may result in the escalation of privileges of the attacker. Affected Versions: The following supported versions of Citrix uberAgent are affected by the vulnerability: Citrix uberAgent before 7.2.1...

The digital signature on wfica32.exe is invalid (error: 1116)

Post upgrading the Citrix Workspace App to 2302 the applications are not launching. Error message while we launch the application. "The digital signature on wfica32.exe is invalid error: 1116"...

Sessions not logging out after enabling Shellbridge

Seamless sessions might not log off gracefully and leave sessions to be active in Citrix Studio or Citrix Director when using Citrix Virtual Apps and Desktops 2212 or later including Citrix Apps and Desktops 2402 LTSR. Starting with Citrix Virtual Apps and Desktops 2212 the Windows startup...

Windows 11 VDA machines stuck at Initializing for Azure AD or Hybrid Azure AD

For Citrix MCS provisioned Azure AD or Hybrid Azure AD joined machine catalogs that use Windows 11 22H2 or 23H2 as master VMs’ OS, the VDA machines might be stuck at “Initializing” status after startup. And when you login to the VDA machines and execute the “dsregcmd /status” command, “Provider:...

CVE-2016-9028 - Unauthorized Redirect flaw in Citrix NetScaler ADC could result in session hijack

Description of Problem An unauthorized redirect vulnerability has been identified in Citrix NetScaler ADC in the AAA-TM flow that could allow a remote attacker to obtain session cookies of a redirected AAA user. This vulnerability does not impact NetScaler Gateway. The following vulnerability has...

Resource has no available templates defined that are fully accessible by all hosts

When using the Citrx Virtual Desktop Setup Wizard in PVS to create a catalog, you get an error after choosing a host resource. Error : Resource has no available templates defined that are fully accessible by all hosts...

Hotfix XS82ECU1085 - For Citrix Hypervisor 8.2 Cumulative Update 1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2 Cumulative Update 1 and is only available to customers on theCustomer Success Servicesprogram. Note: Citrix Hypervisor 8.2 Cumulative Update 1 reaches end of life on Jun 25, 2025. Upgrade toXenServer...

“Cannot Retrieve Data” on Citrix Director Dashboard error. Unable to see session information .

“Cannot Retrieve Data” on Citrix Director Dashboard error. Unable to see session information of User Connection Failures, Failed Single-session OS Machines, Failed Multi-session OS Machines data is missing. The following exception can be seen in CDF traces. Error:...

Error: "HdxSdkErrorDomain_Session error 8" when launching desktop from iPad device.

Error: "HdxSdkErrorDomainSession error 8" when launching desktop from iPad device. Error message in Japanese: 「接続エラー サーバエラー。サーバはセッションを切断しました。」 「継続的なエラー 次の情報をIT部門にお知らせください：操作を完了できませんでした。HdxSdkErrorDomainSessionエラー8」...

"Connection timeout" error when launching Desktop sessions

Users are unable to connect to Desktop Sessions. All connections fail with status "Connection Timeout"...

Citrix License Server susceptibility to certain Apache CVEs

Citrix License Server may be flagged by vulnerability scanners as potentially impacted byCVE-2006-20001, CVE-2022-36760, and/or CVE-2022-37436. This is because Citrix License Server uses Apache version 2.4.54 inLicense Server version 11.17.2 build 42000 and older versions of Apache in older build...