CVE-2020-8269 : An unprivileged Windows user on the VDA can perform arbitrary command execution

An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9

Published 2020-11-16 01:15:14

Updated 2020-12-03 15:00:52

Source HackerOne

View at NVD, CVE.org

Products affected by CVE-2020-8269

Citrix » Xenapp » Ltsr Edition
Versions from including (>=) 7.7 and before (<) 7.15
cpe:2.3:a:citrix:xenapp:*:*:*:*:ltsr:*:*:*
Matching versions
Citrix » Xenapp » Ltsr Edition
Versions before (<) 7.6
cpe:2.3:a:citrix:xenapp:*:*:*:*:ltsr:*:*:*
Matching versions
Citrix » Xenapp » Version: 7.6 Ltsr Edition
cpe:2.3:a:citrix:xenapp:7.6:-:*:*:ltsr:*:*:*
Matching versions
Citrix » Xenapp » Version: 7.6 Update CU8 Ltsr Edition
cpe:2.3:a:citrix:xenapp:7.6:cu8:*:*:ltsr:*:*:*
Matching versions
Citrix » Xenapp » Version: 7.15 Ltsr Edition
cpe:2.3:a:citrix:xenapp:7.15:-:*:*:ltsr:*:*:*
Matching versions
Citrix » Xenapp » Version: 7.15 Update CU6 Ltsr Edition
cpe:2.3:a:citrix:xenapp:7.15:cu6:*:*:ltsr:*:*:*
Matching versions
Citrix » Xendesktop » Ltsr Edition
Versions from including (>=) 7.7 and before (<) 7.15
cpe:2.3:a:citrix:xendesktop:*:*:*:*:ltsr:*:*:*
Matching versions
Citrix » Xendesktop » Ltsr Edition
Versions before (<) 7.6
cpe:2.3:a:citrix:xendesktop:*:*:*:*:ltsr:*:*:*
Matching versions
Citrix » Xendesktop » Version: 7.6 Ltsr Edition
cpe:2.3:a:citrix:xendesktop:7.6:-:*:*:ltsr:*:*:*
Matching versions
Citrix » Xendesktop » Version: 7.6 Update CU8 Ltsr Edition
cpe:2.3:a:citrix:xendesktop:7.6:cu8:*:*:ltsr:*:*:*
Matching versions
Citrix » Xendesktop » Version: 7.15 Ltsr Edition
cpe:2.3:a:citrix:xendesktop:7.15:-:*:*:ltsr:*:*:*
Matching versions
Citrix » Xendesktop » Version: 7.15 Update CU6 Ltsr Edition
cpe:2.3:a:citrix:xendesktop:7.15:cu6:*:*:ltsr:*:*:*
Matching versions
Citrix » Virtual Apps And Desktops »
Versions up to, including, (<=) 2006
cpe:2.3:a:citrix:virtual_apps_and_desktops:*:*:*:*:-:*:*:*
Matching versions
Citrix » Virtual Apps And Desktops » Ltsr Edition
Versions from including (>=) 1903 and up to, including, (<=) 1912
cpe:2.3:a:citrix:virtual_apps_and_desktops:*:*:*:*:ltsr:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2020-8269

EPSS FAQ

0.37%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 57 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-8269

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
9.0	HIGH	AV:N/AC:L/Au:S/C:C/I:C/A:C	8.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	2.8	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2020-8269

CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Assigned by:
- nvd@nist.gov (Primary)
- support@hackerone.com (Secondary)

References for CVE-2020-8269

https://support.citrix.com/article/CTX285059

Citrix Virtual Apps and Desktops Security Update
Patch;Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2020-8269

Products affected by CVE-2020-8269

Exploit prediction scoring system (EPSS) score for CVE-2020-8269

CVSS scores for CVE-2020-8269

CWE ids for CVE-2020-8269

References for CVE-2020-8269