What is CVE-2023-24486?

CVE-2023-24486 is a vulnerability in Citrix Workspace app for Linux that allows a malicious local user to gain access to another user's Citrix Virtual Apps and Desktops session.

What is the severity of CVE-2023-24486?

CVE-2023-24486 has a severity rating of 5.5 (medium).

How can I fix CVE-2023-24486?

To fix CVE-2023-24486, update Citrix Workspace app for Linux to version 2302 or later.

Where can I find more information about CVE-2023-24486?

More information about CVE-2023-24486 can be found in the Citrix Workspace app for Linux security bulletin at https://support.citrix.com/article/CTX477618/citrix-workspace-app-for-linux-security-bulletin-for-cve202324486.

Vulnerability/
CVE-2023-24486

medium

5.5

CWE

NVD-CWE-Other 284

10/7/2023

25/10/2024

CVE-2023-24486: Local user access to a system where another user is utilizing a vulnerable version of Citrix Workspace App for Linux to launch published desktops and applications

Q: How does CVE-2023-24486 affect Citrix Workspace app for Linux?

CVE-2023-24486 allows a malicious local user to gain access to the Citrix Virtual Apps and Desktops session of another user on the same computer.

First published: Mon Jul 10 2023(Updated: )

A vulnerability has been identified in Citrix Workspace app for Linux that, if exploited, may result in a malicious local user being able to gain access to the Citrix Virtual Apps and Desktops session of another user who is using the same computer from which the ICA session is launched.

Credit: secure@citrix.com secure@citrix.com

Affected Software	Affected Version	How to fix
Citrix Workspace	<2302

Never miss a vulnerability like this again

Reference Links

https://support.citrix.com/article/CTX477618/citrix-workspace-app-for-linux-security-bulletin-for-cve202324486

Frequently Asked Questions

What is CVE-2023-24486?
CVE-2023-24486 is a vulnerability in Citrix Workspace app for Linux that allows a malicious local user to gain access to another user's Citrix Virtual Apps and Desktops session.
How does CVE-2023-24486 affect Citrix Workspace app for Linux?
CVE-2023-24486 allows a malicious local user to gain access to the Citrix Virtual Apps and Desktops session of another user on the same computer.
What is the severity of CVE-2023-24486?
CVE-2023-24486 has a severity rating of 5.5 (medium).
How can I fix CVE-2023-24486?
To fix CVE-2023-24486, update Citrix Workspace app for Linux to version 2302 or later.
Where can I find more information about CVE-2023-24486?
More information about CVE-2023-24486 can be found in the Citrix Workspace app for Linux security bulletin at https://support.citrix.com/article/CTX477618/citrix-workspace-app-for-linux-security-bulletin-for-cve202324486.

collector/nvd-index
agent/author
agent/weakness
agent/type
agent/softwarecombine
collector/nvd-latest
agent/software-canonical-lookup-request
agent/severity
agent/references
agent/description
collector/mitre-cve
source/MITRE
agent/title
agent/last-modified-date
agent/first-publish-date
agent/event
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/citrix
canonical/citrix workspace

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.