Command Injection Vulnerability in Citrix Receiver Wrapper Function

Command Injection Vulnerability in Citrix Receiver Wrapper Function

CVE-2019-18910 · MEDIUM Severity

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The Citrix Receiver wrapper function does not safely handle user supplied input, which may be leveraged by an attacker to inject commands that will execute with local user privileges.

Learn more about our User Device Pen Test.