Unrated severityNVD Advisory· Published May 18, 2008· Updated Apr 23, 2026

CVE-2008-2299

Description

Unspecified vulnerability in SecureICA and ICA Basic encryption of Citrix Presentation Server 4.5 and earlier, Access Essentials 2.0 and earlier, and Desktop Server 1.0 can cause clients to use weaker encryption settings than configured by the administrator, which might allow attackers to bypass intended restrictions.

Affected products

Citrix Systems/Access Essentials
cpe:2.3:a:citrix:access_essentials:*:*:*:*:*:*:*:*
Range: <=2.0
Citrix Systems/Desktop Server
cpe:2.3:a:citrix:desktop_server:1.0:*:*:*:*:*:*:*
Citrix Systems/Presentation Server
cpe:2.3:a:citrix:presentation_server:*:*:*:*:*:*:*:*
Range: <=4.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.citrix.com/article/CTX114893nvdPatch
www.securitytracker.com/idnvdPatch
secunia.com/advisories/30271nvdVendor Advisory
www.securityfocus.com/bid/29233nvd
www.vupen.com/english/advisories/2008/1531/referencesnvd
exchange.xforce.ibmcloud.com/vulnerabilities/42444nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000