The VDA is installed on each physical or virtual machine in your site that you make available to users. Those machines deliver applications or desktops. The VDA enables the machine to register with the Controller, which in turn allows the machine and the resources it is hosting to be made available to users. VDAs establish and manage the connection between the machine and the user device. VDAs also verify that a Citrix license is available for the user or session and apply policies that are configured for the session.

Citrix Virtual Delivery Agent (VDA)

Citrix LTSR Virtual Delivery Agent (VDA) is a component of Citrix Virtual Apps and Desktops that enables direct connections between user devices and virtual desktops or applications. It's installed on each machine that hosts applications or virtual desktops, managing the connection between the machine and user devices, verifying user credentials, and applying Citrix policies. LTSR stands for Long Term Service Release, indicating a version with extended support and stability for enterprise environments.

Citrix LTSR Virtual Delivery Agent (VDA)

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Windows Virtual Delivery Agent for CVAD and Citrix DaaS

CVE-2025-6759:
Citrix Virtual Delivery Agent (VDA) vulnerability analysis and mitigation

7.3

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2025-6759: Citrix Virtual Delivery Agent (VDA) vulnerability analysis and mitigation