A vulnerability has been discovered in the Citrix Secure Access client for Windows
which, if exploited, could allow an attacker with access to an endpoint with Standard User Account that has the vulnerable client installed to escalate their local privileges to that of NT AUTHORITY\SYSTEM.
References
Link | Resource |
---|---|
https://support.citrix.com/article/CTX561480/citrix-secure-access-client-for-windows-security-bulletin-for-cve202324491 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
19 Jul 2023, 16:47
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:citrix:secure_access_client:*:*:*:*:*:*:*:* |
|
First Time |
Microsoft windows
Citrix Microsoft Citrix secure Access Client |
|
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
References | (MISC) https://support.citrix.com/article/CTX561480/citrix-secure-access-client-for-windows-security-bulletin-for-cve202324491 - Vendor Advisory |
11 Jul 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-07-11 22:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-24491
Mitre link : CVE-2023-24491
CVE.ORG link : CVE-2023-24491
JSON object : View
Products Affected
citrix
- secure_access_client
microsoft
- windows
CWE