CVE-2023-24485
First published: Thu Feb 16 2023(Updated: )
Vulnerabilities have been identified that, collectively, allow a standard Windows user to perform operations as SYSTEM on the computer running Citrix Workspace app.
Credit: secure@citrix.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Citrix Workspace app for Windows | <2212 | |
| Citrix Workspace app for Windows | =1912 | |
| Citrix Workspace app for Windows | =1912-cu1 | |
| Citrix Workspace app for Windows | =1912-cu1-hf1 | |
| Citrix Workspace app for Windows | =1912-cu2 | |
| Citrix Workspace app for Windows | =1912-cu3 | |
| Citrix Workspace app for Windows | =1912-cu4 | |
| Citrix Workspace app for Windows | =1912-cu5 | |
| Citrix Workspace app for Windows | =1912-cu6 | |
| Citrix Workspace app for Windows | =2203.1 | |
| Citrix Workspace app for Windows | =2203.1-cu1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-24485?
CVE-2023-24485 is a vulnerability that allows a standard Windows user to perform operations as SYSTEM on a computer running Citrix Workspace app.
Which versions of Citrix Workspace app are affected by CVE-2023-24485?
CVE-2023-24485 affects Citrix Workspace app versions 1912, 2203.1, and their respective cumulative updates (cu1, cu2, cu3, cu4, cu5, cu6).
What is the severity of CVE-2023-24485?
CVE-2023-24485 has a severity rating of 7.8, classified as high.
How can I fix CVE-2023-24485?
To mitigate CVE-2023-24485, it is recommended to update Citrix Workspace app to the latest version or apply the corresponding security patches.
Where can I find more information about CVE-2023-24485?
More information about CVE-2023-24485 can be found on the Citrix support website: https://support.citrix.com/article/CTX477617/citrix-workspace-app-for-windows-security-bulletin-for-cve202324484-cve202324485
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/remedy
- agent/tags
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/citrix
- canonical/citrix workspace app for windows
- version/citrix workspace app for windows/1912
- version/citrix workspace app for windows/1912-cu1
- version/citrix workspace app for windows/1912-cu1-hf1
- version/citrix workspace app for windows/1912-cu2
- version/citrix workspace app for windows/1912-cu3
- version/citrix workspace app for windows/1912-cu4
- version/citrix workspace app for windows/1912-cu5
- version/citrix workspace app for windows/1912-cu6
- version/citrix workspace app for windows/2203.1
- version/citrix workspace app for windows/2203.1-cu1