CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-4879 – Citrix Workspace App for Windows - Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges
https://notcve.org/view.php?id=CVE-2025-4879
17 Jun 2025 — Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows • https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694718 • CWE-269: Improper Privilege Management •
CVSS: 7.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-7890 – Local privilege escalation allows a low-privileged user to gain SYSTEM privileges
https://notcve.org/view.php?id=CVE-2024-7890
11 Sep 2024 — Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows • https://support.citrix.com/s/article/CTX691485-citrix-workspace-app-for-windows-security-bulletin-cve20247889-and-cve20247890?language=en_US • CWE-269: Improper Privilege Management •
CVSS: 7.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-7889 – Local privilege escalation allows a low-privileged user to gain SYSTEM privileges
https://notcve.org/view.php?id=CVE-2024-7889
11 Sep 2024 — Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows • https://support.citrix.com/s/article/CTX691485-citrix-workspace-app-for-windows-security-bulletin-cve20247889-and-cve20247890?language=en_US • CWE-664: Improper Control of a Resource Through its Lifetime •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-42423
https://notcve.org/view.php?id=CVE-2024-42423
10 Sep 2024 — Citrix Workspace App version 23.9.0.24.4 on Dell ThinOS 2311 contains an Incorrect Authorization vulnerability when Citrix CEB is enabled for WebLogin. A local unauthenticated user with low privileges may potentially exploit this vulnerability to bypass existing controls and perform unauthorized actions leading to information disclosure and tampering. La versión 23.9.0.24.4 de la aplicación Citrix Workspace en Dell ThinOS 2311 contiene una vulnerabilidad de autorización incorrecta cuando Citrix CEB está hab... • https://www.dell.com/support/kbdoc/en-us/000225289/dsa-2024-229-security-update-for-dell-thinos-vulnerabilities • CWE-863: Incorrect Authorization •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-6148
https://notcve.org/view.php?id=CVE-2024-6148
10 Jul 2024 — Bypass of GACS Policy Configuration settings in Citrix Workspace app for HTML5 Omitir los ajustes de configuración de políticas GACS en la aplicación Citrix Workspace para HTML5 • https://support.citrix.com/article/CTX678037 • CWE-276: Incorrect Default Permissions •
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-6286 – Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges
https://notcve.org/view.php?id=CVE-2024-6286
10 Jul 2024 — Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows La escalada de privilegios locales permite a un usuario con pocos privilegios obtener privilegios de SYSTEM en la aplicación Citrix Workspace para Windows Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows • https://support.citrix.com/article/CTX678036 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-24486 – Local user access to a system where another user is utilizing a vulnerable version of Citrix Workspace App for Linux to launch published desktops and applications
https://notcve.org/view.php?id=CVE-2023-24486
10 Jul 2023 — A vulnerability has been identified in Citrix Workspace app for Linux that, if exploited, may result in a malicious local user being able to gain access to the Citrix Virtual Apps and Desktops session of another user who is using the same computer from which the ICA session is launched. • https://support.citrix.com/article/CTX477618/citrix-workspace-app-for-linux-security-bulletin-for-cve202324486 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2023-24485 – Privilege Escalation on the system running a vulnerable version of Citrix Workspace app for Windows
https://notcve.org/view.php?id=CVE-2023-24485
16 Feb 2023 — Vulnerabilities have been identified that, collectively, allow a standard Windows user to perform operations as SYSTEM on the computer running Citrix Workspace app. • https://support.citrix.com/article/CTX477617/citrix-workspace-app-for-windows-security-bulletin-for-cve202324484-cve202324485 • CWE-284: Improper Access Control CWE-863: Incorrect Authorization •
CVSS: 5.5EPSS: 0%CPEs: 11EXPL: 0CVE-2023-24484 – A malicious user can cause log files to be written to a directory that they do not have permission to write to.
https://notcve.org/view.php?id=CVE-2023-24484
16 Feb 2023 — A malicious user can cause log files to be written to a directory that they do not have permission to write to. • https://support.citrix.com/article/CTX477617/citrix-workspace-app-for-windows-security-bulletin-for-cve202324484-cve202324485 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-21825
https://notcve.org/view.php?id=CVE-2022-21825
09 Feb 2022 — An Improper Access Control vulnerability exists in Citrix Workspace App for Linux 2012 - 2111 with App Protection installed that can allow an attacker to perform local privilege escalation. Se presenta una vulnerabilidad de control de acceso inapropiado en Citrix Workspace App for Linux 2012 - 2111 con App Protection instalado que puede permitir a un atacante llevar a cabo una escalada de privilegios local • https://support.citrix.com/article/CTX338435 • CWE-284: Improper Access Control •