Multiple privilege escalation vulnerabilities found in Citrix VPN

The pandemic has seen organizations around the world allow their employees to work from home and many are using VPN services to connect to their corporate networks. However, the growing reliance on VPNs has led to increased interest from cybercriminals who wish to exploit vulnerabilities found in popular VPN software.

While Cympton security researcher Chen Erlich recently discovered a privilege escalation vulnerability in HotSpot Shield’s Windows client, his latest blog post shows that consumer VPN vendors aren’t a lone weak point as enterprise VPNs also contain vulnerabilities that can be exploited by cybercriminals. In fact, Erlich recently discovered multiple privilege escalation and elevation of privilege vulnerabilities in Citrix’s widely used business VPN solution, Citrix Gateway Plug-In for Windows.


Leave a Reply

This website uses cookies. By continuing to use this site, you accept our use of cookies.