PT-2022-15160 · Citrix · Citrix Gateway Plug-In For Windows

Published

2022-05-26

Updated

2022-06-08

CVE-2022-21827

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Name of the Vulnerable Software and Affected Versions Citrix Gateway Plug-in for Windows versions prior to 21.9.1.2

Description An improper privilege issue has been found that could allow an attacker with local access to a computer to corrupt or delete files as SYSTEM.

Recommendations For versions prior to 21.9.1.2, update to version 21.9.1.2 or later to resolve the issue.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2022-21827

Affected Products

Citrix Gateway Plug-In For Windows

PT-2022-15160 · Citrix · Citrix Gateway Plug-In For Windows

CVE-2022-21827

Weakness Enumeration

Related Identifiers

Affected Products

References · 3