CVE-2023-24483 | SynScan

Vulnerability Database

290,301

Total vulnerabilities in the database

CVE-2023-24483

A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA.

Published: Feb 16, 2023
Updated: Apr 14, 2023
CVE: CVE-2023-24483
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-269

Affected Software
References

Software	From	Fixed in
citrix / virtual_apps_and_desktops	-	2212
citrix / virtual_apps_and_desktops	1912-cu1	1912-cu1.x
citrix / virtual_apps_and_desktops	1912-cu2	1912-cu2.x
citrix / virtual_apps_and_desktops	1912-cu3	1912-cu3.x
citrix / virtual_apps_and_desktops	1912-cu4	1912-cu4.x
citrix / virtual_apps_and_desktops	1912-cu5	1912-cu5.x
citrix / virtual_apps_and_desktops	1912	1912.x
citrix / virtual_apps_and_desktops	2203	2203.x
citrix / virtual_apps_and_desktops	2203-cu1	2203-cu1.x

https://support.citrix.com/article/CTX477616/citrix-virtual-apps-and-desktops-security-bulletin-for-cve202324483