A malicious user can cause log files to be written to a directory that they do not have permission to write to.
CVE-2023-24484

5.5MEDIUM

Key Information:

Vendor

Citrix
Status
Citrix Workspace App For Windows
Vendor
CVE Published:
16 February 2023

What is CVE-2023-24484?

A malicious user can cause log files to be written to a directory that they do not have permission to write to.

Affected Version(s)

Citrix Workspace App for Windows Citrix Workspace App versions < 2212

References

https://support.citrix.com/article/CTX477617/citrix-works...

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2023-24484 : A malicious user can cause log files to be written to a directory that they do not have permission to write to.