Citrix Virtual Apps and Desktops and DaaS vulnerable to Local Privilege Escalation
CVE-2024-6151

Currently unrated

Key Information:

Vendor: Citrix
Status: Windows Virtual Delivery Agent
Vendor: CVE Published:; 10 July 2024

Summary

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual Delivery Agent for Windows used by Citrix Virtual Apps and Desktops and Citrix DaaS

Affected Version(s)

Windows Virtual Delivery Agent 2402 < 0

Windows Virtual Delivery Agent 1912 LTSR

Windows Virtual Delivery Agent 2203 LTSR

References

https://support.citrix.com/article/CTX678035

Timeline

Vulnerability published
Jul 10, 2024
Vulnerability Reserved
Jun 18, 2024

Collectors

NVD DatabaseMitre Database