PT-2021-15264 · Citrix · Citrix Workspace App For Windows
Published
2021-05-27
·
Updated
2022-08-30
·
CVE-2021-22907
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Citrix Workspace App for Windows versions prior to 2105
Citrix Workspace App for Windows 1912 LTSR prior to CU4
Description
An improper access control issue potentially allows privilege escalation.
Recommendations
For versions prior to 2105, update to version 2105 or later.
For 1912 LTSR versions prior to CU4, update to CU4 or later.
As a temporary workaround, consider restricting access to sensitive resources until a patch is applied.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Citrix Workspace App For Windows