The VDA is installed on each physical or virtual machine in your site that you make available to users. Those machines deliver applications or desktops. The VDA enables the machine to register with the Controller, which in turn allows the machine and the resources it is hosting to be made available to users. VDAs establish and manage the connection between the machine and the user device. VDAs also verify that a Citrix license is available for the user or session and apply policies that are configured for the session.

Citrix Virtual Delivery Agent (VDA)

Citrix XenDesktop is a desktop virtualization software that allows multiple users to access and run Microsoft Windows desktops that are installed at a centralized location separate from the devices from which they are being accessed. It provides secure remote access to Windows and Linux desktops and applications from any device.

Citrix XenDesktop

Citrix XenApp is a software solution that allows Windows applications to be accessed via individual devices from a shared server or cloud system. It provides secure, remote access to Windows apps and data from any device. XenApp removes the need for individual installations on each device, streamlining management and reducing IT costs.

Citrix XenApp

Citrix LTSR Virtual Delivery Agent (VDA) is a component of Citrix Virtual Apps and Desktops that enables direct connections between user devices and virtual desktops or applications. It's installed on each machine that hosts applications or virtual desktops, managing the connection between the machine and user devices, verifying user credentials, and applying Citrix policies. LTSR stands for Long Term Service Release, indicating a version with extended support and stability for enterprise environments.

Citrix LTSR Virtual Delivery Agent (VDA)

An authorised user on a Windows host running Citrix Universal Print Server can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9.

CVE-2020-8283:
Citrix Virtual Delivery Agent (VDA) vulnerability analysis and mitigation

Overview

Technical details

Impact

Mitigation and workarounds

Additional resources

8.8

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2020-8283: Citrix Virtual Delivery Agent (VDA) vulnerability analysis and mitigation