Citrix Alerts Users to Vulnerabilities in Session Recording Software
/ 1 min read
Citrix warns users of critical vulnerabilities in Session Recording software. Security researchers at watchTowr identified two significant flaws, CVE-2024-8068 and CVE-2024-8069, that could allow attackers to gain control of systems without authentication, a claim Citrix disputes. The vulnerabilities stem from the insecure deserialization of user data via a .NET function known to be dangerous. Both watchTowr and the Cybersecurity and Infrastructure Security Agency have urged users to upgrade their software immediately to mitigate potential risks.