Vulnerability Database

296,137

Total vulnerabilities in the database

CVE-2024-7890

Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows

Published: Sep 12, 2024
Updated: May 4, 2025
CVE: CVE-2024-7890
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.3
AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
citrix / workspace	2203.1-cu1	2203.1-cu1.x
citrix / workspace	2203.1-cu6_hotfix1	2203.1-cu6_hotfix1.x
citrix / workspace	2203.1-cu6_hotfix2	2203.1-cu6_hotfix2.x
citrix / workspace	-	2203.1
citrix / workspace	2203.1-cu2	2203.1-cu2.x
citrix / workspace	2203.1-cu3	2203.1-cu3.x
citrix / workspace	2203.1-cu4	2203.1-cu4.x
citrix / workspace	2203.1-cu5	2203.1-cu5.x
citrix / workspace	2402	2402.x
citrix / workspace	-	2405

https://support.citrix.com/s/article/CTX691485-citrix-workspace-app-for-windows-security-bulletin-cve20247889-and-cve20247890?language=en_US