Citrix Releases Security Updates for Workspace App for Windows

Threat ID:: CC-3575
Threat Severity:: Low
Published:: 28 July 2020 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Affected platforms

The following platforms are known to be affected:

Citrix Workspace for Windows Versions: all

Threat details

Vulnerability

Citrix has released security updates to address a vulnerability in Workspace app for Windows. A remote attacker could exploit this vulnerability to take control of an affected system if Windows Server Message Block (SMB) is enabled.

Remediation advice

Users and administrators are encouraged to review Citrix security bulletin CTX277662 and apply the relevant updates.

CVE Vulnerabilities

Status Master

CVE-2020-8207

Improper access control in Citrix Workspace app for Windows 1912 CU1 and 2006.1 causes privilege escalation and code execution when the automatic updater service is running.

Last edited: 28 July 2020 12:16 pm