6.3
CVE-2023-24490
- EPSS 0.07%
- Veröffentlicht 10.07.2023 22:15:09
- Zuletzt bearbeitet 21.11.2024 07:47:58
- Quelle secure@citrix.com
- CVE-Watchlists
- Unerledigt
LoginUsers with only access to launch VDA applications can launch an unauthorized desktop
Users with only access to launch VDA applications can launch an unauthorized desktop
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Citrix ≫ Virtual Apps And Desktops SwEdition- Version < 2305
Citrix ≫ Virtual Apps And Desktops Version1912 Update- SwEditionltsr
Citrix ≫ Virtual Apps And Desktops Version1912 Updatecu1 SwEditionltsr
Citrix ≫ Virtual Apps And Desktops Version1912 Updatecu2 SwEditionltsr
Citrix ≫ Virtual Apps And Desktops Version1912 Updatecu3 SwEditionltsr
Citrix ≫ Virtual Apps And Desktops Version1912 Updatecu4 SwEditionltsr
Citrix ≫ Virtual Apps And Desktops Version1912 Updatecu5 SwEditionltsr
Citrix ≫ Virtual Apps And Desktops Version1912 Updatecu6 SwEditionltsr
Citrix ≫ Virtual Apps And Desktops Version2203 Update- SwEditionltsr
Citrix ≫ Virtual Apps And Desktops Version2203 Updatecu1 SwEditionltsr
Citrix ≫ Virtual Apps And Desktops Version2203 Updatecu2 SwEditionltsr
Citrix ≫ Linux Virtual Delivery Agent SwEdition- Version < 2305
Citrix ≫ Linux Virtual Delivery Agent Version1912 Update- SwEditionltsr
Citrix ≫ Linux Virtual Delivery Agent Version1912 Updatecu1 SwEditionltsr
Citrix ≫ Linux Virtual Delivery Agent Version1912 Updatecu2 SwEditionltsr
Citrix ≫ Linux Virtual Delivery Agent Version1912 Updatecu3 SwEditionltsr
Citrix ≫ Linux Virtual Delivery Agent Version1912 Updatecu4 SwEditionltsr
Citrix ≫ Linux Virtual Delivery Agent Version1912 Updatecu5 SwEditionltsr
Citrix ≫ Linux Virtual Delivery Agent Version1912 Updatecu6 SwEditionltsr
Citrix ≫ Linux Virtual Delivery Agent Version2203 Update- SwEditionltsr
Citrix ≫ Linux Virtual Delivery Agent Version2203 Updatecu1 SwEditionltsr
Citrix ≫ Linux Virtual Delivery Agent Version2203 Updatecu2 SwEditionltsr
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0.222 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 2.8 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
|
| secure@citrix.com | 6.3 | 2.8 | 3.4 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
|
CWE-284 Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.