Vulnerability Database

296,278

Total vulnerabilities in the database

CVE-2024-6151

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual Delivery Agent for Windows used by Citrix Virtual Apps and Desktops and Citrix DaaS

Published: Jul 10, 2024
Updated: Jul 26, 2025
CVE: CVE-2024-6151
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
citrix / virtual_apps_and_desktops	1912	1912.x
citrix / virtual_apps_and_desktops	2203	2203.x
citrix / virtual_apps_and_desktops	1912-cu1	1912-cu1.x
citrix / virtual_apps_and_desktops	1912-cu2	1912-cu2.x
citrix / virtual_apps_and_desktops	1912-cu3	1912-cu3.x
citrix / virtual_apps_and_desktops	1912-cu4	1912-cu4.x
citrix / virtual_apps_and_desktops	1912-cu5	1912-cu5.x
citrix / virtual_apps_and_desktops	1912-cu6	1912-cu6.x
citrix / virtual_apps_and_desktops	1912-cu7	1912-cu7.x
citrix / virtual_apps_and_desktops	2203-cu1	2203-cu1.x
citrix / virtual_apps_and_desktops	2203-cu2	2203-cu2.x
citrix / virtual_apps_and_desktops	2203-cu3	2203-cu3.x
citrix / virtual_apps_and_desktops	2203-cu4	2203-cu4.x
citrix / virtual_apps_and_desktops	1912-cu8	1912-cu8.x
citrix / virtual_apps_and_desktops	-	2311.x

https://support.citrix.com/article/CTX678035