Citrix has recently announced the availability of patches for a significant security vulnerability found in the Secure Access client for Ubuntu. This vulnerability can be exploited, resulting in remote code execution (RCE).
It is important to note that Citrix has stated that user interaction is required to exploit this vulnerability, which is identified as CVE-2023-24492, with a CVSS score of 9.6. While Citrix has not shared specific technical details regarding the flaw, they have confirmed that the issue has been addressed in version 23.5.2 of the Secure Access client for Ubuntu.
In addition, Citrix has also released patches for a separate vulnerability of high severity in the Secure Access client for Windows.