Privilege Escalation Vulnerability in Citrix Virtual Apps and Desktops

Privilege Escalation Vulnerability in Citrix Virtual Apps and Desktops

CVE-2021-22928 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM.

Learn more about our Cis Benchmark Audit For Desktop Software.