Users with only access to launch VDA applications can launch an unauthorized desktop
CVE-2023-24490

6.3MEDIUM

Key Information:

Vendor: Citrix
Status: Virtual Delivery Agents For Windows For Cvad And Citrix Daas Security; Virtual Delivery Agents For Linux For Cvad And Citrix Daas Security
Vendor: CVE Published:; 10 July 2023

🔔 Create Citrix Vulnerability Alert

What is CVE-2023-24490?

Users with only access to launch VDA applications can launch an unauthorized desktop

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Virtual Delivery Agents for Linux for CVAD and Citrix DaaS Security Current Release (CR) 0 < 2305

Virtual Delivery Agents for Linux for CVAD and Citrix DaaS Security Long Term Service Release (LTSR) 0 < 2203 LTSR CU3

Virtual Delivery Agents for Linux for CVAD and Citrix DaaS Security Long Term Service Release (LTSR) 0

References

https://support.citrix.com/article/CTX559370/windows-and-...

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 10, 2023
Vulnerability Reserved
Jan 24, 2023

JSON

Citrix