Citrix Virtual Apps And Desktops
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Citrix Virtual Apps And Desktops.
By the Year
In 2026 there have been 0 vulnerabilities in Citrix Virtual Apps And Desktops. Last year, in 2025 Virtual Apps And Desktops had 1 security vulnerability published. Right now, Virtual Apps And Desktops is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 7.80 |
| 2024 | 2 | 7.50 |
| 2023 | 2 | 6.05 |
| 2022 | 0 | 0.00 |
| 2021 | 1 | 7.80 |
| 2020 | 3 | 0.00 |
It may take a day or so for new Virtual Apps And Desktops vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Citrix Virtual Apps And Desktops Security Vulnerabilities
Local Privilege Escalation in Citrix VDA on Windows VDA
CVE-2025-6759
7.8 - High
- July 08, 2025
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Windows Virtual Delivery Agent for CVAD and Citrix DaaS
CVE-2024-6151: VDA Win LPE SYSTEM Escalation
CVE-2024-6151
7.8 - High
- July 10, 2024
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual Delivery Agent for Windows used by Citrix Virtual Apps and Desktops and Citrix DaaS
CVE-2023-6184: XSS in Citrix Session Recording
CVE-2023-6184
7.2 - High
- January 18, 2024
Cross SiteScripting vulnerability in Citrix Session Recording allows attacker to perform Cross Site Scripting
XSS
VMware Horizon VDA Exploit: Unauthorized Desktop Launch
CVE-2023-24490
4.3 - Medium
- July 10, 2023
Users with only access to launch VDA applications can launch an unauthorized desktop
Citrix VDA Local Privilege Escalation to SYSTEM
CVE-2023-24483
7.8 - High
- February 16, 2023
A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA.
Improper Privilege Management
A vulnerability has been identified in Citrix Virtual Apps and Desktops
CVE-2021-22928
7.8 - High
- August 05, 2021
A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM.
An authorised user on a Windows host running Citrix Universal Print Server
CVE-2020-8283
- December 14, 2020
An authorised user on a Windows host running Citrix Universal Print Server can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9.
Improper Privilege Management
An unprivileged Windows user on the VDA
CVE-2020-8269
- November 16, 2020
An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9
Improper Privilege Management
An unprivileged Windows user on the VDA or an SMB user
CVE-2020-8270
- November 16, 2020
An unprivileged Windows user on the VDA or an SMB user can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285871 and CTX285872, 7.15 LTSR CU6 hotfix CTX285341 and CTX285342
Shell injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Citrix Virtual Apps And Desktops or by Citrix? Click the Watch button to subscribe.
