Lucene search

CitrixCVE-2023-24485

HistoryFeb 16, 2023 - 6:15 p.m.

CVE-2023-24485

2023-02-1618:15:12

CWE-284

CWE-863

Citrix

web.nvd.nist.gov

246

cve-2023-24485

vulnerabilities

windows user

system

citrix workspace app

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

High

EPSS

Percentile

13.2%

JSON

Vulnerabilities have been identified that, collectively, allow a standard Windows user to perform operations as SYSTEM on the computer running Citrix Workspace app.

Affected configurations

Nvd

Node

citrixworkspaceRange<2212-windows

citrixworkspaceMatch1912-ltsrwindows

citrixworkspaceMatch1912cu1ltsrwindows

citrixworkspaceMatch1912cu1-hf1ltsrwindows

citrixworkspaceMatch1912cu2ltsrwindows

citrixworkspaceMatch1912cu3ltsrwindows

citrixworkspaceMatch1912cu4ltsrwindows

citrixworkspaceMatch1912cu5ltsrwindows

citrixworkspaceMatch1912cu6ltsrwindows

citrixworkspaceMatch2203.1-ltsrwindows

citrixworkspaceMatch2203.1cu1ltsrwindows

VendorProductVersionCPE
citrixworkspace*cpe:2.3:a:citrix:workspace:*:*:*:*:-:windows:*:*
citrixworkspace1912cpe:2.3:a:citrix:workspace:1912:-:*:*:ltsr:windows:*:*
citrixworkspace1912cpe:2.3:a:citrix:workspace:1912:cu1:*:*:ltsr:windows:*:*
citrixworkspace1912cpe:2.3:a:citrix:workspace:1912:cu1-hf1:*:*:ltsr:windows:*:*
citrixworkspace1912cpe:2.3:a:citrix:workspace:1912:cu2:*:*:ltsr:windows:*:*
citrixworkspace1912cpe:2.3:a:citrix:workspace:1912:cu3:*:*:ltsr:windows:*:*
citrixworkspace1912cpe:2.3:a:citrix:workspace:1912:cu4:*:*:ltsr:windows:*:*
citrixworkspace1912cpe:2.3:a:citrix:workspace:1912:cu5:*:*:ltsr:windows:*:*
citrixworkspace1912cpe:2.3:a:citrix:workspace:1912:cu6:*:*:ltsr:windows:*:*
citrixworkspace2203.1cpe:2.3:a:citrix:workspace:2203.1:-:*:*:ltsr:windows:*:*

Vendor	Product	Version	CPE
citrix	workspace	*	cpe:2.3:a:citrix:workspace:::::-:windows::
citrix	workspace	1912	cpe:2.3:a:citrix:workspace:1912:-:::ltsr:windows::
citrix	workspace	1912	cpe:2.3:a:citrix:workspace:1912:cu1:::ltsr:windows::
citrix	workspace	1912	cpe:2.3:a:citrix:workspace:1912:cu1-hf1:::ltsr:windows::
citrix	workspace	1912	cpe:2.3:a:citrix:workspace:1912:cu2:::ltsr:windows::
citrix	workspace	1912	cpe:2.3:a:citrix:workspace:1912:cu3:::ltsr:windows::
citrix	workspace	1912	cpe:2.3:a:citrix:workspace:1912:cu4:::ltsr:windows::
citrix	workspace	1912	cpe:2.3:a:citrix:workspace:1912:cu5:::ltsr:windows::
citrix	workspace	1912	cpe:2.3:a:citrix:workspace:1912:cu6:::ltsr:windows::
citrix	workspace	2203.1	cpe:2.3:a:citrix:workspace:2203.1:-:::ltsr:windows::

Rows per page:

1-10 of 111

CNA Affected

[
  {
    "vendor": "Citrix",
    "product": "Citrix Workspace App for Windows",
    "versions": [
      {
        "version": "Citrix Workspace App versions",
        "status": "affected",
        "lessThan": "2212",
        "versionType": "custom",
        "changes": [
          {
            "at": "2203 LTSR before CU2 ",
            "status": "unaffected"
          },
          {
            "at": "1912 LTSR before CU7 Hotfix 2 (19.12.7002) ",
            "status": "unaffected"
          }
        ]
      }
    ]
  }
]