Citrix: Security Vulnerabilities
CVE-2023-3519
Unauthenticated remote code execution
Known exploited
CVSS Score
9.8
EPSS Score
0.94
Published
2023-07-19
A vulnerability has been discovered in the Citrix Secure Access client for Windows
which, if exploited, could allow an attacker with access to an endpoint with Standard User Account that has the vulnerable client installed to escalate their local privileges to that of NT AUTHORITY\SYSTEM.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-07-11
A vulnerability has been discovered in the Citrix Secure Access client for Ubuntu which, if exploited, could allow an attacker to remotely execute code if a victim user opens an attacker-crafted link and accepts further prompts.
CVSS Score
9.6
EPSS Score
0.003
Published
2023-07-11
CVE-2023-24489
A vulnerability has been discovered in the customer-managed ShareFile storage zones controller which, if exploited, could allow an unauthenticated attacker to remotely compromise the customer-managed ShareFile storage zones controller.
Known exploited
CVSS Score
9.8
EPSS Score
0.944
Published
2023-07-10
Users with only access to launch VDA applications can launch an unauthorized desktop
CVSS Score
6.3
EPSS Score
0.001
Published
2023-07-10
A vulnerability has been identified in Citrix Workspace app for Linux that, if exploited, may result in a malicious local user being able to gain access to the Citrix Virtual Apps and Desktops session of another user who is using the same computer from which the ICA session is launched.
CVSS Score
5.5
EPSS Score
0.001
Published
2023-07-10
Arbitrary file read in Citrix ADC and Citrix Gateway
CVSS Score
6.3
EPSS Score
0.159
Published
2023-07-10
Cross site scripting vulnerability in Citrix ADC and Citrix Gateway in allows and attacker to perform cross site scripting
CVSS Score
6.1
EPSS Score
0.908
Published
2023-07-10
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a guest OS may be able to control resources for which it is not authorized, which may lead to information disclosure and data tampering.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-07-04
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged user can cause improper restriction of operations within the bounds of a memory buffer cause an out-of-bounds read, which may lead to denial of service.
CVSS Score
5.5
EPSS Score
0.001
Published
2023-04-01