CVE-2021-22928 - OpenCVE

A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Citrix	Xenapp Virtual Apps And Desktops Xendesktop

Configuration 1 [-]

OR	cpe:2.3:a:citrix:virtual_apps_and_desktops:::::-:::*
	cpe:2.3:a:citrix:virtual_apps_and_desktops:1912:-:::ltsr:::*
	cpe:2.3:a:citrix:virtual_apps_and_desktops:1912:cu3::::::
	cpe:2.3:a:citrix:xenapp:7.15:-:::ltsr:::*
	cpe:2.3:a:citrix:xenapp:7.15:cu6:::ltsr:::*
	cpe:2.3:a:citrix:xenapp:7.15:cu7:::ltsr:::*
	cpe:2.3:a:citrix:xendesktop:7.15:-:::ltsr:::*
	cpe:2.3:a:citrix:xendesktop:7.15:cu6:::ltsr:::*
	cpe:2.3:a:citrix:xendesktop:7.15:cu7:::ltsr:::*

References

Link	Resource
https://support.citrix.com/article/CTX319750	Patch Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: hackerone

Published: 2021-08-05T20:16:39

Updated: 2021-08-05T20:16:39

Reserved: 2021-01-06T00:00:00

Link: CVE-2021-22928

JSON object: View

NVD Information

Status : Analyzed

Published: 2021-08-05T21:15:11.733

Modified: 2022-07-12T17:42:04.277

Link: CVE-2021-22928

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "Citrix Virtual Apps and Desktops", "vendor": "n/a", "versions": [{"status": "affected", "version": "2106 HF1, 1912LTSR CU3 HF1, 7.15LTSR CU7 HF1"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM."}], "problemTypes": [{"descriptions": [{"description": "Privilege Escalation (CAPEC-233)", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-08-05T20:16:39", "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "shortName": "hackerone"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://support.citrix.com/article/CTX319750"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "support@hackerone.com", "ID": "CVE-2021-22928", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Citrix Virtual Apps and Desktops", "version": {"version_data": [{"version_value": "2106 HF1, 1912LTSR CU3 HF1, 7.15LTSR CU7 HF1"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Privilege Escalation (CAPEC-233)"}]}]}, "references": {"reference_data": [{"name": "https://support.citrix.com/article/CTX319750", "refsource": "MISC", "url": "https://support.citrix.com/article/CTX319750"}]}}}}, "cveMetadata": {"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "assignerShortName": "hackerone", "cveId": "CVE-2021-22928", "datePublished": "2021-08-05T20:16:39", "dateReserved": "2021-01-06T00:00:00", "dateUpdated": "2021-08-05T20:16:39", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:citrix:virtual_apps_and_desktops:*:*:*:*:-:*:*:*", "matchCriteriaId": "0FE7155E-9F8B-47B7-8E70-2D947F6AEDAC", "versionEndIncluding": "2106", "versionStartIncluding": "2006", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:virtual_apps_and_desktops:1912:-:*:*:ltsr:*:*:*", "matchCriteriaId": "F9330183-B04B-46F1-9DA6-5EAF216DFCC3", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:virtual_apps_and_desktops:1912:cu3:*:*:*:*:*:*", "matchCriteriaId": "3DE66CEF-6D57-429A-9776-E5ED73827A8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:xenapp:7.15:-:*:*:ltsr:*:*:*", "matchCriteriaId": "39D97CED-69C7-4762-85E9-978813DB3392", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:xenapp:7.15:cu6:*:*:ltsr:*:*:*", "matchCriteriaId": "2A10B5EA-EC14-47ED-ADBB-D975C6B07BE3", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:xenapp:7.15:cu7:*:*:ltsr:*:*:*", "matchCriteriaId": "2CFEBFEE-2A25-44E4-B52F-FFE74919F488", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:xendesktop:7.15:-:*:*:ltsr:*:*:*", "matchCriteriaId": "1AFF8323-A381-481F-9BE2-F9027D942851", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:xendesktop:7.15:cu6:*:*:ltsr:*:*:*", "matchCriteriaId": "1A2A6CF3-F554-44C9-965E-FEAEDDE44D95", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:xendesktop:7.15:cu7:*:*:ltsr:*:*:*", "matchCriteriaId": "15C211A8-9CD0-44B0-BD5D-94D78290EBA9", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to SYSTEM."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en Citrix Virtual Apps and Desktops que podr\u00eda, si es explotado, permitir a un usuario de un VDA de Windows que tenga instalado Citrix Profile Management o Citrix Profile Management WMI Plugin escalar su nivel de privilegios en ese VDA de Windows a SYSTEM"}], "id": "CVE-2021-22928", "lastModified": "2022-07-12T17:42:04.277", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-08-05T21:15:11.733", "references": [{"source": "support@hackerone.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://support.citrix.com/article/CTX319750"}], "sourceIdentifier": "support@hackerone.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}