threat
engine
.sh
Back
·
··:··
Home
/
Product
/
citrix workspace
Product
citrix workspace
19 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-4879
< 2409
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
7.8
HIGH
CVE-2023-42404
all versions
OneVision Workspace before WS23.1 SR1 (build w31.040) allows arbitrary Java EL execution.
4.9
MEDIUM
CVE-2024-7890
< 2405
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
7.3
HIGH
CVE-2024-7889
< 2405
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
7.3
HIGH
CVE-2024-42423
all versions
Citrix Workspace App version 23.9.0.24.4 on Dell ThinOS 2311 contains an Incorrect Authorization vulnerability when Citrix CEB is
6.1
MEDIUM
CVE-2024-6286
< 2403.1
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
7.8
HIGH
CVE-2024-6149
< 2404.1
Redirection of users to a vulnerable URL in Citrix Workspace app for HTML5
6.1
MEDIUM
CVE-2024-6148
< 2404.1
Bypass of GACS Policy Configuration settings in Citrix Workspace app for HTML5
8.8
HIGH
CVE-2024-2241
< 2024.1.1.0
Improper access control in the user interface in Devolutions Workspace 2024.1.0 and earlier allows an authenticated user to perfor
6.3
MEDIUM
CVE-2023-6588
<= 2023.3.2.0
Offline mode is always enabled, even if permission disallows it, in Devolutions Server data source in Devolutions Workspace 2023.
6.5
MEDIUM
CVE-2023-24486
< 2302
A vulnerability has been identified in Citrix Workspace app for Linux that, if exploited, may result in a malicious local user bei
5.5
MEDIUM
CVE-2023-2257
< 2023.1.1.4
Authentication Bypass in Hub Business integration in Devolutions Workspace Desktop 2023.1.1.3 and earlier on Windows and macOS all
7.8
HIGH
CVE-2023-24485
< 2212
Vulnerabilities have been identified that, collectively, allow a standard Windows user to perform operations as SYSTEM on the comp
7.8
HIGH
CVE-2023-24484
< 2212
A malicious user can cause log files to be written to a directory that they do not have permission to write to.
5.5
MEDIUM
CVE-2022-47412
<= 12.1.0.1760
Given a malicious document provided by an attacker, the ONLYOFFICE Workspace DMS is vulnerable to a stored (persistent, or "Type I
5.4
MEDIUM
CVE-2022-21825
>= 2012 and < 2112
An Improper Access Control vulnerability exists in Citrix Workspace App for Linux 2012 - 2111 with App Protection installed that c
7.8
HIGH
CVE-2021-22907
< 2105
An improper access control vulnerability exists in Citrix Workspace App for Windows potentially allows privilege escalation in CR
7.8
HIGH
CVE-2020-8207
all versions
Improper access control in Citrix Workspace app for Windows 1912 CU1 and 2006.1 causes privilege escalation and code execution whe
8.8
HIGH
CVE-2019-11634
< 1904
Citrix Workspace App before 1904 for Windows has Incorrect Access Control.
9.8
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin