Citrix Secure Access Client — known CVE vulnerabilities
Every CVE whose affected-product data names Citrix Secure Access Client, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2023-24492 — CVSS 9.6 (critical): A vulnerability has been discovered in the Citrix Secure Access client for Ubuntu which, if exploited, could allow an attacker to remotely…
CVE-2023-24491 — CVSS 7.8 (high): A vulnerability has been discovered in the Citrix Secure Access client for Windows which, if exploited, could allow an attacker with access…
CVE-2025-0320 — CVSS 7.8 (high): Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Secure Access Client for Windows
CVE-2024-3661 — CVSS 7.6 (high): DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on…
CVE-2025-1222 — CVSS 6.1 (medium): An attacker can gain application privileges in order to perform limited modification and/or read arbitrary data in Citrix Secure Access…
CVE-2025-1223 — CVSS 6.1 (medium): An attacker can gain application privileges in order to perform limited modification and/or read arbitrary data in Citrix Secure Access…