⚠ Actively exploited
Added to CISA KEV on 2025-08-25. Federal agencies required to patch by 2025-09-15. Required action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable..

CVE-2024-8069Deserialization of Untrusted Data in Session Recording

CWE-502Deserialization of Untrusted DataCWE-269Improper Privilege ManagementCWE-94Code Injection11 documents10 sources
Severity
5.1MEDIUMNVD
EPSS
48.3%
top 2.25%
CISA KEV
KEV
Added 2025-08-25
Due 2025-09-15
Exploit
No known exploits
Affected products
5
Citrix Session RecordingCitrix Session RecordingCitrix Session Recording+2 more
Timeline
PublishedNov 12
KEV addedAug 25
KEV dueSep 15
Latest updateApr 14
CISA Required Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Description

Limited remote code execution with privilege of a NetworkService Account access in Citrix Session Recording if the attacker is an authenticated user on the same intranet as the session recording server

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Affected Packages6 packages

CVEListV5citrix_session_recording/citrix_session_recording2407 Current Release24.5.200.8+3

🔴Vulnerability Details

2
GHSA
GHSA-ww66-45gm-65fm: Limited remote code execution with privilege of a NetworkService Account access in Citrix Session Recording if the attacker is an authenticated user o2024-11-12
VulnCheck
Citrix Session Recording Deserialization of Untrusted Data Vulnerability2024

🔍Detection Rules

1
Suricata
ET WEB_SPECIFIC_APPS Citrix Session Recording Remote Code Execution (CVE-2024-8069)2024-11-13

📋Vendor Advisories

2
CISA
Citrix Session Recording Deserialization of Untrusted Data Vulnerability2025-08-25
Citrix
Citrix Session Recording Security Bulletin for CVE-2024-8068 and CVE-2024-80692024-11-14

🕵️Threat Intelligence

5
Tenable
Claude Mythos: Prepare for your board’s cybersecurity questions about the latest AI model from Anthropic2026-04-14
Bleepingcomputer
CISA warns of actively exploited Git code execution flaw2025-08-26
Wiz
Crying Out Cloud - December 2024 Newsletter | Wiz2024-12-12
Recorded Future
August 2025 CVE Landscape
Recorded Future
August 2025 CVE Landscape