CVE-2020-8270

Published: Nov 16, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

An unprivileged Windows user on the VDA or an SMB user can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285871 and CTX285872, 7.15 LTSR CU6 hotfix CTX285341 and CTX285342

Vendor	Product	Versions
n/a	Citrix Virtual Apps and Desktops	affected `2009, 1912 LTSR CU1 hotfixes CTX285871 and CTX285872, 7.15 LTSR CU6 hotfix CTX285341 and CTX285342`

Weaknesses (CWE)

CWE-78

References

https://support.citrix.com/article/CTX285059

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-8270

Description

Affected Products

Weaknesses (CWE)

References