Overview
Citrix has released security updates for new vulnerabilities within their Citrix Workspace Apps and Virtual Apps and Desktops. If applicable, address the vulnerabilities immediately. Doing so will prevent users from exploiting these vulnerabilities and taking unauthorized control of devices and systems.
Updates for Known Vulnerabilities
- The first vulnerability is CVE-2023-24486 (labeled CTX477618 on the Citrix Support page). It exists within the Citrix Workspace app for Linux. If exploited, a malicious local user could gain access to the Citrix Virtual Apps and Desktops session of another user. The nonmalicious user must be using the same computer from which the ICA session is launched. This problem affects all supported versions of the Citrix Workspace app for Linux before 2302. For users affected, it is crucial to update the Citrix Workspace app for Linux 2302 and later as soon as possible.
- The next vulnerabilities are CVE-2023-24484 and CVE-2023-24485 (labeled CTX477617 on the Citrix Support page). Both allow a standard Windows user to perform operations as SYSTEM on a computer that runs the Citrix Workspace app. For users affected, it is essential to update the Citrix Workspace app for Windows to 1) Citrix Workspace App 2212 and later, 2) Citrix Workspace App 2203 LTSR CU2 and later cumulative updates, or 3) Citrix Workspace App 1912 LTSR CU7 Hotfix 2 (19.12.7002) and later cumulative updates.
- The final vulnerability in Citrix’s update is CVE-2023-24483 (labeled CTX477616 on Citrix’s Support page). This vulnerability allows a local user to use privilege escalation tactics to NT AUTHORITY\SYSTEM on Citrix Virtual Apps and Desktops Windows VDA. For users affected, it is vital to update your Citrix Virtual Apps and Desktops. Update to 1) Citrix Virtual Apps and Desktops 2212 and later versions, 2) Citrix Virtual Apps and Desktops 2203 LTSR CU2 and later cumulative updates, or 3) Citrix Virtual Apps and Desktops 912 LTSR CU6 and later cumulative updates.
It is always imperative to update to the latest version of your device or software. This is especially true if known vulnerabilities are reported.
For more information on these vulnerabilities and the links to the updates, please visit the Citrix Support page listed in the sources below.
Sources
https://www.cisa.gov/uscert/ncas/current-activity/2023/02/14/citrix-releases-security-updates-workspace-apps-virtual-apps-and – CISA Update
CTX477618 – https://support.citrix.com/article/CTX477618/citrix-workspace-app-for-linux-security-bulletin-for-cve202324486
CTX477617 – https://support.citrix.com/article/CTX477617/citrix-workspace-app-for-windows-security-bulletin-for-cve202324484-cve202324485
CTX477616 – https://support.citrix.com/article/CTX477616/citrix-virtual-apps-and-desktops-security-bulletin-for-cve202324483