CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: May 3, 2022
Description
Citrix Workspace Application and Receiver for Windows contains remote code execution vulnerability resulting from local drive access preferences not being enforced into the clients' local drives.
EPSS — Exploit Probability
30.8%
Higher than 96.7% of all CVEs
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2019-11634
Risk Assessment
HIGHIn CISA KEV
Ransomware
Details
- Severity
- High
- EPSS
- 30.8%
- CISA KEV
- Yes
- Ransomware
- Known
- Articles
- 0
Timeline
Published
Nov 3, 2021
Added to KEV
Nov 3, 2021
Remediation Due
May 3, 2022