CVE-2019-11634
CRITICAL KEV RANSOMWARECitrix Workspace App <1904 - Privilege Escalation
Title source: llmExploitation Summary
CVE-2019-11634 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added November 3, 2021, with confirmed use in ransomware campaigns.
Description
Citrix Workspace App before 1904 for Windows has Incorrect Access Control.
References (3)
Core 3
Core References
US Government Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-11634
Vendor Advisory x_refsource_misc
https://support.citrix.com/v1/search?searchQuery=%22%22&lang=en&sort=cr_date_desc&prod=&pver=&ct=Security+Bulletin
Vendor Advisory x_refsource_confirm
https://support.citrix.com/article/CTX251986
Scores
CVSS v3
9.8
EPSS
0.5720
EPSS Percentile
98.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
active
Automatable
yes
Technical Impact
total
Details
CISA KEV
2021-11-03
VulnCheck KEV
2021-01-26
InTheWild.io
2021-07-23
ENISA EUVD
EUVD-2019-3304
Ransomware Use
Confirmed
CWE
CWE-284
Status
published
Products (2)
citrix/receiver
4.9 cumulative_update_6
citrix/workspace
< 1904
Published
May 22, 2019
KEV Added
Nov 03, 2021
Tracked Since
Feb 18, 2026