A Vulnerability in Citrix Workspace App for Linux Could Allow for Local Privilege Escalation
MS-ISAC ADVISORY NUMBER:
2022-007DATE(S) ISSUED:
01/11/2022OVERVIEW:
A vulnerability has been discovered in Citrix Workspace App for Linux, a virtual desktop application. Successful exploitation of this vulnerability could allow for local privilege escalation. A privilege escalation enables the attacker to obtain root privileges within the system which will enable them to install programs; view, change, or delete data; or create new accounts with full user rights.
THREAT INTELLIGENCE:
There are currently no reports of these vulnerabilities being exploited in the wild.
SYSTEMS AFFECTED:
- Citrix Workspace App for Linux 2012 to 2111
RISK:
Government:
Businesses:
Home Users:
TECHNICAL SUMMARY:
A vulnerability has been discovered in Citrix Workspace App for Linux, a virtual desktop application. This vulnerability has a pre-condition in that the Citrix Workspace App for Linux must be installed with App Protection. Successful exploitation of this vulnerability could allow for local privilege escalation. A privilege escalation enables the attacker to obtain root privileges within the system which will enable them to install programs; view, change, or delete data; or create new accounts with full user rights.
RECOMMENDATIONS:
We recommend the following actions be taken:
- Upgrade Citrix Workspace App for Linux (2112 and later versions) to a fixed version as provided by Citrix.
- Verify no unauthorized changes have occurred before applying patches/updates.