New Security Vulnerability Discovered In Citrix Receiver and Workspace App

The Geeksultant's picture

From Citrix:

Description of Problem
Vulnerabilities have been identified in Citrix Workspace app and Receiver for Windows that could result in a local user escalating their privilege level to administrator during the uninstallation process.

The issues have the following identifiers:

CVE-2020-13884

CVE-2020-13885

These vulnerabilities affect supported versions of Citrix Workspace app for Windows before 1912 and all supported versions of Citrix Receiver for Windows.

These vulnerabilities do not affect Citrix Workspace app and Receiver on any other platforms.

What Customers Should Do
A new version of Citrix Workspace app for Windows has been released. Citrix strongly recommends that customers upgrade Citrix Workspace app to version 1912 or later via Auto Update, or by directly running the installer. Customers using Citrix Receiver are strongly recommended to upgrade to Citrix Workspace app.

The new Citrix Workspace app version is available from the following Citrix website location:

https://www.citrix.com/downloads/workspace-app/

The new LTSR version is available from the following Citrix website location:

https://www.citrix.com/downloads/workspace-app/workspace-app-for-windows...
https://support.citrix.com/article/CTX275460

As always, for all of your IT Consulting needs - "Geeksultant - Your IT Consultant of Choice!"

770-559-1492 - sales@geeksultant.com