High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-18	CVE-2023-6184	Cross-site Scripting vulnerability in Citrix Virtual Apps and Desktops Cross SiteScripting vulnerability in Citrix Session Recording allows attacker to perform Cross Site Scripting network low complexity citrix CWE-79	7.2
2023-02-16	CVE-2023-24483	Improper Privilege Management vulnerability in Citrix Virtual Apps and Desktops A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA. local low complexity citrix CWE-269	7.8
2021-08-05	CVE-2021-22928	Unspecified vulnerability in Citrix Virtual Apps and Desktops, Xenapp and Xendesktop A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM. local low complexity citrix	7.2