Citrix Workspace

14 CVEs affecting Citrix Workspace. Latest disclosed: 2025-06-17. Critical: 1, High: 9.

Top CVEs affecting Citrix Workspace
CVESeverityScorePublishedSummary
CVE-2019-11634Critical9.82019-05-22Citrix Workspace App before 1904 for Windows has Incorrect Access Control.
CVE-2024-6148High8.82024-07-10Bypass of GACS Policy Configuration settings in Citrix Workspace app for HTML5
CVE-2020-8207High8.82020-07-24Improper access control in Citrix Workspace app for Windows 1912 CU1 and 2006.1 causes privilege escalation and code execution when the automatic updater servi…
CVE-2025-4879High7.82025-06-17Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
CVE-2024-6286High7.82024-07-10Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
CVE-2023-24485High7.82023-02-16Vulnerabilities have been identified that, collectively, allow a standard Windows user to perform operations as SYSTEM on the computer running Citrix Workspace…
CVE-2022-21825High7.82022-02-09An Improper Access Control vulnerability exists in Citrix Workspace App for Linux 2012 - 2111 with App Protection installed that can allow an attacker to perfo…
CVE-2021-22907High7.82021-05-27An improper access control vulnerability exists in Citrix Workspace App for Windows potentially allows privilege escalation in CR versions prior to 2105 and 19…
CVE-2024-7890High7.32024-09-11Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
CVE-2024-7889High7.32024-09-11Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
CVE-2024-42423Medium6.12024-09-10Citrix Workspace App version 23.9.0.24.4 on Dell ThinOS 2311 contains an Incorrect Authorization vulnerability when Citrix CEB is enabled for WebLogin. A local…
CVE-2024-6149Medium6.12024-07-10Redirection of users to a vulnerable URL in Citrix Workspace app for HTML5
CVE-2023-24486Medium5.52023-07-10A vulnerability has been identified in Citrix Workspace app for Linux that, if exploited, may result in a malicious local user being able to gain access to the…
CVE-2023-24484Medium5.52023-02-16A malicious user can cause log files to be written to a directory that they do not have permission to write to.