CVE-2024-6286
published 2024-07-10CVE-2024-6286: Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
PriorityP340high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.39%
30.5th percentile
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| citrix | citrix_workspace_app | — | — |
| citrix | citrix_workspace_app_for_windows | >= 2402 LTSR < 0 | 0 |
| citrix | citrix_workspace_app_for_windows | >= 2403 < 1 | 1 |
| citrix | workspace | < 2203.1 | 2203.1 |
| citrix | workspace | < 2403.1 | 2403.1 |
| citrix | workspace | — | — |
| citrix | xenserver | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv4.08.5HIGHCVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-qgrq-6c5w-399w: Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
ghsa_unreviewed·2024-07-10
CVE-2024-6286 [HIGH] CWE-269 GHSA-qgrq-6c5w-399w: Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
Citrix
Citrix Workspace app for Windows Security Bulletin CVE-2024-6286
vendor_citrix·2024-07-11·CVSS 8.5
CVE-2024-6286 [HIGH] CWE-269 Citrix Workspace app for Windows Security Bulletin CVE-2024-6286
Citrix Workspace app for Windows Security Bulletin CVE-2024-6286
of Problem A vulnerability has been discovered that impacts the Citrix Workspace app for Windows. Refer to below for further details: Details
CVE References: CVE-2024-6286
Affected Products: Citrix Workspace app, XenServer
Severity: High
CVSS Score: 8.5
Remediation:
Citrix strongly recommends that customers upgrade their Citrix Workspace app for Windows to versions that contain the fixes as soon as possible. Citrix Workspace app for Windows versions that contain the fixes are: Current Release (CR) Citrix Workspace app for Windows 2403.1 and later versions Long Term Service Release (LTSR) Citrix Workspace app for Windows 2402 LTSR and later versions Citrix Workspace app for Windows 2203.1 LTSR CU6 Hotfix 2 and later version
Suricata
ET EXPLOIT SAP NetWeaver AS Directory Traversal Attempt Inbound (CVE-2020-6286)
suricata·2020-07-16·CVSS 5.3
CVE-2020-6286 [MEDIUM] ET EXPLOIT SAP NetWeaver AS Directory Traversal Attempt Inbound (CVE-2020-6286)
ET EXPLOIT SAP NetWeaver AS Directory Traversal Attempt Inbound (CVE-2020-6286)
Rule: alert http $EXTERNAL_NET any -> any any (msg:"ET EXPLOIT SAP NetWeaver AS Directory Traversal Attempt Inbound (CVE-2020-6286)"; flow:established,to_server; http.method; content:"POST"; http.request_body; content:""; distance:0; content:"../../../"; within:10; fast_pattern; reference:url,github.com/chipik/SAP_RECON/blob/master/RECON.py; reference:cve,2020-6286; classtype:attempted-user; sid:2030549; rev:3; metadata:created_at 2020_07_16, cve CVE_2020_6286, deployment Perimeter, deployment Internal, confidence High, signature_severity Major, tag Exploit, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_11_26, mitre_tactic_id TA0007, mitre_tactic_name Discovery, mitre_technique_id T1083, mitre
No public exploits indexed.
No writeups or analysis indexed.
2024-07-10
Published