CVE-2020-8270
HIGH EXPLOITED RANSOMWARECVAD <2009-7.15 LTSR - Command Injection
Title source: llmExploitation Summary
CVE-2020-8270 has been observed exploited in the wild (reported by VulnCheck KEV), including in ransomware campaigns.
Description
An unprivileged Windows user on the VDA or an SMB user can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285871 and CTX285872, 7.15 LTSR CU6 hotfix CTX285341 and CTX285342
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://support.citrix.com/article/CTX285059
Scores
CVSS v3
8.8
EPSS
0.0085
EPSS Percentile
75.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
VulnCheck KEV
2021-01-26
Ransomware Use
Confirmed
CWE
CWE-78
Status
published
Products (2)
citrix/virtual_apps_and_desktops
< 2006
citrix/virtual_apps_and_desktops
1903 - 1912
Published
Nov 16, 2020
Tracked Since
Feb 18, 2026