Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-24483

A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA.

Published

2023-02-16T18:15:11.613

Last Modified

2025-03-18T20:15:18.483

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses

Type: Secondary
CWE-269
Type: Primary
CWE-269
Type: Secondary
CWE-269

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	citrix	virtual_apps_and_desktops	< 2212	Yes
Application	citrix	virtual_apps_and_desktops	1912	Yes
Application	citrix	virtual_apps_and_desktops	1912	Yes
Application	citrix	virtual_apps_and_desktops	1912	Yes
Application	citrix	virtual_apps_and_desktops	1912	Yes
Application	citrix	virtual_apps_and_desktops	1912	Yes
Application	citrix	virtual_apps_and_desktops	1912	Yes
Application	citrix	virtual_apps_and_desktops	2203	Yes
Application	citrix	virtual_apps_and_desktops	2203	Yes
Operating System	microsoft	windows	-	No

References

https://support.citrix.com/article/CTX477616/citrix-virtual-apps-and-desktops-security-bulletin-for-cve202324483 Vendor Advisory ([email protected])
https://support.citrix.com/article/CTX477616/citrix-virtual-apps-and-desktops-security-bulletin-for-cve202324483 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)