CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-8207
https://notcve.org/view.php?id=CVE-2020-8207
Improper access control in Citrix Workspace app for Windows 1912 CU1 and 2006.1 causes privilege escalation and code execution when the automatic updater service is running. Un control de acceso inapropiado en la aplicación Citrix Workspace para Windows versiones 1912 CU1 y 2006.1, causa una escalada de privilegios y una ejecución del código cuando el servicio de actualización automática es ejecutado • https://support.citrix.com/article/CTX277662 • CWE-284: Improper Access Control CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-13884
https://notcve.org/view.php?id=CVE-2020-13884
Citrix Workspace App before 1912 on Windows has Insecure Permissions and an Unquoted Path vulnerability which allows local users to gain privileges during the uninstallation of the application. Citrix Workspace App anterior a 1912 en Windows tiene permisos inseguros que permiten a los usuarios locales obtener privilegios durante la desinstalación de la aplicación. • https://github.com/hessandrew/CVE-2020-13884 https://support.citrix.com/article/CTX275460 • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-13885
https://notcve.org/view.php?id=CVE-2020-13885
Citrix Workspace App before 1912 on Windows has Insecure Permissions which allows local users to gain privileges during the uninstallation of the application. Citrix Workspace App anterior a 1912 en Windows tiene permisos inseguros que permiten a los usuarios locales obtener privilegios durante la desinstalación de la aplicación • https://github.com/hessandrew/CVE-2020-13885 https://support.citrix.com/article/CTX275460 • CWE-276: Incorrect Default Permissions •
CVSS: 9.8EPSS: 2%CPEs: 2EXPL: 0CVE-2019-11634 – Citrix Workspace Application and Receiver for Windows Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-11634
Citrix Workspace App before 1904 for Windows has Incorrect Access Control. La aplicación Citrix Workspace antes de 1904 para Windows tiene un control de acceso incorrecto. Citrix Workspace Application and Receiver for Windows contains remote code execution vulnerability resulting from local drive access preferences not being enforced into the clients' local drives. • https://support.citrix.com/article/CTX251986 https://support.citrix.com/v1/search?searchQuery=%22%22&lang=en&sort=cr_date_desc&prod=&pver=&ct=Security+Bulletin •