UberAgent Privilege Escalation Vulnerability Discovered
CVE-2024-6677

7.3HIGH

Key Information:

Vendor: Citrix
Status: Uberagent
Vendor: CVE Published:; 12 July 2024

What is CVE-2024-6677?

This vulnerability allows attackers with limited access on Citrix uberAgent to escalate their privileges, potentially leading to unauthorized access to sensitive data and system resources. Proper updates and patches should be applied to mitigate any risks associated with this weakness. For detailed security measures, refer to Citrix's official security guidance.

Affected Version(s)

uberAgent 7.2 < 1

References

https://support.citrix.com/article/CTX691103/citrix-ubera...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 12, 2024
Vulnerability Reserved
Jul 10, 2024