Citrix Virtual Apps And Desktops vulnerabilities
129 known vulnerabilities affecting citrix/citrix_virtual_apps_and_desktops.
Total CVEs
129
CISA KEV
4
actively exploited
Public exploits
11
Exploited in wild
3
Severity breakdown
CRITICAL29HIGH37MEDIUM53LOW10
Vulnerabilities
Page 1 of 7
CVE-2024-8068MEDIUMCVSS 5.1KEV2024-11-14
CVE-2024-8068 [MEDIUM] CWE-269 Citrix Session Recording Security Bulletin for CVE-2024-8068 and CVE-2024-8069
Citrix Session Recording Security Bulletin for CVE-2024-8068 and CVE-2024-8069
of Problem A vulnerability has been discovered in Citrix Session Recording. Refer below for further details:
CVE References: CVE-2024-8068, CVE-2024-8069
Affected Products: Citrix Session Recording, Citrix Virtual Apps and Desktops, Session Recording, XenServer, session recording
Severity: Medium
CVSS Score:
citrix
CVE-2024-6151HIGHCVSS 8.52024-07-15
CVE-2024-6151 [HIGH] CWE-269 Windows Virtual Delivery Agent for CVAD and Citrix DaaS Security Bulletin CVE-2024-6151
Windows Virtual Delivery Agent for CVAD and Citrix DaaS Security Bulletin CVE-2024-6151
of Problem A vulnerability has been identified that impacts Virtual Delivery Agent for Windows used by Citrix Virtual Apps and Desktops and Citrix DaaS. Refer to below for further details:
CVE References: CVE-2024-6151
Affected Products: Citrix Virtual Apps and Desktops, Citrix provisioning s
citrix
CVE-2023-6184HIGHCVSS 7.2PoC2024-01-16
CVE-2023-6184 [HIGH] CWE-913 Citrix Session Recording Security Bulletin for CVE-2023-6184
Citrix Session Recording Security Bulletin for CVE-2023-6184
Pre-requisites CWE CVE-2023-6184 An authenticated user can perform RCE Attacker must possess admin privileges to the Session Recording server CWE-913 Instructions Cloud Software Group strongly urges affected customers of Citrix Session Recording to install the relevant updated versions of Citrix Session Recording as soon their upgrade schedule pe
citrix
CVE-2023-24486MEDIUMCVSS 5.52023-02-23
CVE-2023-24486 [MEDIUM] CWE-284 Citrix Workspace app for Linux Security Bulletin for CVE-2023-24486
Citrix Workspace app for Linux Security Bulletin for CVE-2023-24486
Vulnerability Type Pre-conditions CVE-2023-24486 Session takeover CWE-284: Improper Access Control Local user access to a system where another user is utilizing a vulnerable version of Citrix Workspace App for Linux to launch published desktops and applications This issue affects all supported versions of Citrix Workspace app for
citrix
CVE-2023-24483HIGHCVSS 7.8≥ Citrix Virtual Apps and Desktops, < 22122023-02-16
CVE-2023-24483 [HIGH] CWE-269 CVE-2023-24483: A vulnerability has been identified that, if exploited, could result in a local user elevating their
A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA.
nvdcitrix
CVE-2021-22928HIGHCVSS 7.82021-07-13
CVE-2021-22928 [HIGH] CWE-284 Citrix Virtual Apps and Desktops Security Update
Citrix Virtual Apps and Desktops Security Update
Vulnerability Type Pre-conditions CVE-2021-22928 Local privilege escalation on a Windows VDA CWE-284: Improper Access Control Authenticated access to a VDA with Citrix Profile Management or Citrix Profile Management WMI Plugin installed The vulnerability affects the following supported versions of Citrix Virtual Apps and Desktops and XenApp / XenDesktop: Citrix Virtual
citrix
CVE-2020-8269HIGHCVSS 8.82020-11-25
CVE-2020-8269 [HIGH] CWE-269 Citrix Virtual Apps and Desktops Security Update
Citrix Virtual Apps and Desktops Security Update
of Problem Vulnerabilities have been identified in Citrix Virtual Apps and Desktops that could, if exploited, result in: An authenticated user of a multi-session Windows VDA, who has been granted permission to write to c:\ root directory, being able to escalate their privilege level on that VDA to SYSTEM An authenticated user of a Windows VDA with Citrix App-V service i
citrix
CVE-2020-8200MEDIUMCVSS 6.52020-09-10
CVE-2020-8200 [MEDIUM] Citrix StoreFront Security Update - Security Bulletin
Citrix StoreFront Security Update - Security Bulletin
A high severity issue has been discovered in Citrix StoreFront that, if exploited, would allow an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server. This issue has the following identifier: CVE-2020-8200 The issue affects the following supported Current Release (CR) vers
citrix
CVE-2007-2850CRITICALCVSS 10.0
CVE-2007-2850 [CRITICAL] Citrix Security Bulletin CTX112964
Citrix Security Bulletin CTX112964
CVE References: CVE-2007-2850, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2010-4566CRITICALCVSS 9.3PoC
CVE-2010-4566 [CRITICAL] Citrix Security Bulletin CTX127613
Citrix Security Bulletin CTX127613
CVE References: CVE-2010-4566, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2016-2071CRITICALCVSS 9.8
CVE-2016-2071 [CRITICAL] Citrix Security Bulletin CTX206001
Citrix Security Bulletin CTX206001
CVE References: CVE-2016-2071, CVE-2016-2072, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2018-14007CRITICALCVSS 9.8
CVE-2018-14007 [CRITICAL] Citrix Security Bulletin CTX236548
Citrix Security Bulletin CTX236548
CVE References: CVE-2018-14007, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2010-2990CRITICALCVSS 9.3
CVE-2010-2990 [CRITICAL] Citrix Security Bulletin CTX125975
Citrix Security Bulletin CTX125975
CVE References: CVE-2010-2990, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2018-18571CRITICALCVSS 9.1
CVE-2018-18571 [CRITICAL] Citrix Security Bulletin CTX247736
Citrix Security Bulletin CTX247736
CVE References: CVE-2018-18571, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2017-2615CRITICALCVSS 9.1
CVE-2017-2615 [CRITICAL] Citrix Security Bulletin CTX220771
Citrix Security Bulletin CTX220771
CVE References: CVE-2017-2615, CVE-2017-2620, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2016-5302CRITICALCVSS 9.8
CVE-2016-5302 [CRITICAL] Citrix Security Bulletin CTX213549
Citrix Security Bulletin CTX213549
CVE References: CVE-2016-5302, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2008-0356CRITICALCVSS 10.0
CVE-2008-0356 [CRITICAL] Citrix Security Bulletin CTX114487
Citrix Security Bulletin CTX114487
CVE References: CVE-2008-0356, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2016-6493CRITICALCVSS 9.8
CVE-2016-6493 [CRITICAL] Citrix Security Bulletin CTX215460
Citrix Security Bulletin CTX215460
CVE References: CVE-2016-6493, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2011-2592CRITICALCVSS 9.3
CVE-2011-2592 [CRITICAL] Citrix Security Bulletin CTX134303
Citrix Security Bulletin CTX134303
CVE References: CVE-2011-2592, CVE-2011-2593, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
CVE-2016-9676CRITICALCVSS 9.8
CVE-2016-9676 [CRITICAL] Citrix Security Bulletin CTX219580
Citrix Security Bulletin CTX219580
CVE References: CVE-2016-9676, CVE-2016-9677, CVE-2016-9678, CVE-2016-9679, CVE-2016-9680, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
citrix
1 / 7Next →