Citrix Workspace
14 CVEs affecting Citrix Workspace. Latest disclosed: 2025-06-17. Critical: 1, High: 9.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2019-11634 | Critical | 9.8 | 2019-05-22 | Citrix Workspace App before 1904 for Windows has Incorrect Access Control. |
CVE-2024-6148 | High | 8.8 | 2024-07-10 | Bypass of GACS Policy Configuration settings in Citrix Workspace app for HTML5 |
CVE-2020-8207 | High | 8.8 | 2020-07-24 | Improper access control in Citrix Workspace app for Windows 1912 CU1 and 2006.1 causes privilege escalation and code execution when the automatic updater servi… |
CVE-2025-4879 | High | 7.8 | 2025-06-17 | Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows |
CVE-2024-6286 | High | 7.8 | 2024-07-10 | Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows |
CVE-2023-24485 | High | 7.8 | 2023-02-16 | Vulnerabilities have been identified that, collectively, allow a standard Windows user to perform operations as SYSTEM on the computer running Citrix Workspace… |
CVE-2022-21825 | High | 7.8 | 2022-02-09 | An Improper Access Control vulnerability exists in Citrix Workspace App for Linux 2012 - 2111 with App Protection installed that can allow an attacker to perfo… |
CVE-2021-22907 | High | 7.8 | 2021-05-27 | An improper access control vulnerability exists in Citrix Workspace App for Windows potentially allows privilege escalation in CR versions prior to 2105 and 19… |
CVE-2024-7890 | High | 7.3 | 2024-09-11 | Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows |
CVE-2024-7889 | High | 7.3 | 2024-09-11 | Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows |
CVE-2024-42423 | Medium | 6.1 | 2024-09-10 | Citrix Workspace App version 23.9.0.24.4 on Dell ThinOS 2311 contains an Incorrect Authorization vulnerability when Citrix CEB is enabled for WebLogin. A local… |
CVE-2024-6149 | Medium | 6.1 | 2024-07-10 | Redirection of users to a vulnerable URL in Citrix Workspace app for HTML5 |
CVE-2023-24486 | Medium | 5.5 | 2023-07-10 | A vulnerability has been identified in Citrix Workspace app for Linux that, if exploited, may result in a malicious local user being able to gain access to the… |
CVE-2023-24484 | Medium | 5.5 | 2023-02-16 | A malicious user can cause log files to be written to a directory that they do not have permission to write to. |