CVE-2024-7890

Sept. 13, 2024, 6:35 p.m.

Tags

CWE-269
secure@citrix.com
2024-09-11
CVE-2024-7890

Product(s) Impacted

Citrix Workspace app for Windows

Description

Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows

Weaknesses

CWE-269
Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

CWE ID: 269

Date

Published: Sept. 11, 2024, 11:15 p.m.

Last Modified: Sept. 13, 2024, 6:35 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

secure@citrix.com

References

https://support.citrix.com/s/article/CTX691485-citrix-workspace-app-for-windows-security-bulletin-cve20247889-and-cve20247890?language=en_US
secure@citrix.com