Lucene search

CitrixCTX319750

HistoryJul 12, 2021 - 9:09 p.m.

Citrix Virtual Apps and Desktops Security Update

2021-07-1221:09:37

support.citrix.com

150

citrix

virtual apps

desktops

security update

vulnerability

privilege escalation

windows vda

citrix profile management

citrix profile management wmi plugin

cve-2021-22928

cwe-284

access control

vulnerable versions

end of life

extended support program

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

12.6%

JSON

A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM.

This vulnerability has the following identifier:

CVE ID	Description	Vulnerability Type	Pre-conditions
CVE-2021-22928	Local privilege escalation on a Windows VDA	CWE-284: Improper Access Control	Authenticated access to a VDA with Citrix Profile Management or Citrix Profile Management WMI Plugin installed

The vulnerability affects the following supported versions of Citrix Virtual Apps and Desktops and XenApp / XenDesktop:

Citrix Virtual Apps and Desktops 2106 and earlier Current Release (CR) versions
Citrix Virtual Apps and Desktops 1912 LTSR CU3 and earlier versions of 1912 LTSR
Citrix XenApp / XenDesktop 7.15 LTSR CU7 and earlier versions of 7.15 LTSR
Citrix Virtual Apps and Desktops 2106 is only affected when Citrix Profile Management is installed on a Windows VDA as Citrix Profile Management WMI Plugin is not affected in this version.

Please note that Citrix XenApp /XenDesktop7.6 LTSR has now reached End of Life and is no longer supported except through Citrix Extended Support Program.

Affected configurations

Vulners

Node

citrixapplication_delivery_managementMatchcitrix_profile_management_x

citrixapplication_delivery_managementMatchcitrix_profile_management_wmi_plugin_x

citrixapplication_delivery_managementMatchcitrix_profile_management_x

citrixapplication_delivery_managementMatchcitrix_profile_management_wmi_plugin_x

citrixapplication_delivery_managementMatchcitrix_profile_management_x

citrixapplication_delivery_managementMatchcitrix_profile_management_wmi_plugin_x

VendorProductVersionCPE
citrixapplication_delivery_managementcitrix_profile_management_xcpe:2.3:a:citrix:application_delivery_management:citrix_profile_management_x:*:*:*:*:*:*:*
citrixapplication_delivery_managementcitrix_profile_management_wmi_plugin_xcpe:2.3:a:citrix:application_delivery_management:citrix_profile_management_wmi_plugin_x:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
citrix	application_delivery_management	citrix_profile_management_x	cpe:2.3:a:citrix:application_delivery_management:citrix_profile_management_x:::::::*
citrix	application_delivery_management	citrix_profile_management_wmi_plugin_x	cpe:2.3:a:citrix:application_delivery_management:citrix_profile_management_wmi_plugin_x:::::::*

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

12.6%

JSON

Related for CTX319750