CVE-2024-11468

Summary

Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to a flaw in the installation process. Successful exploitation of this issue may allow attackers with user privileges to escalate their privileges to root on the system where the Horizon Client for macOS is installed.

Affected Software

VendorProductVersion RangeStatus
OmnissaOmnissa Horizon Client for MacOSOmnissa Horizon Client for macOS 2406 or earlieraffected

Weaknesses

  • Installer Process Vulnerability

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References