What is the CVSS score of CVE-2025-6759?

CVE-2025-6759 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Windows are affected by CVE-2025-6759?

CVE-2025-6759 is a local privilege escalation vulnerability in Windows Virtual Delivery Agent that allows low-privileged users to gain SYSTEM-level access on Citrix Virtual Apps and Desktops (CVAD)…. A patch is available.

How to fix or mitigate CVE-2025-6759?

Within 24 hours: Identify all systems running Windows Virtual Delivery Agent in your CVAD and Citrix DaaS infrastructure using your asset inventory and patch management tools. Within 7 days: Apply the vendor-released patch to all Virtual Delivery Agent instances, prioritizing production and high-availability environments; coordinate with Citrix for specific version guidance. Within 30 days: Verify patch deployment across all instances, document completion in your change management system, and conduct post-patch vulnerability rescans to confirm remediation.

Windows CVE-2025-6759

EUVD-2025-20748 HIGH

Improper Privilege Management (CWE-269)

2025-07-08 secure@citrix.com

Windows Privilege Escalation Microsoft Citrix Virtual Apps And Desktops

7.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Updated

Apr 16, 2026 - 06:28 EUVD-patch-fix

executive_summary

Re-analysis Queued

Apr 16, 2026 - 05:29 backfill_euvd_patch

patch_released

Patch available

Apr 16, 2026 - 05:29 EUVD

2503

EUVD ID Assigned

Mar 16, 2026 - 04:21 euvd

EUVD-2025-20748

Analysis Generated

Mar 16, 2026 - 04:21 vuln.today

CVE Published

Jul 08, 2025 - 22:15 nvd

HIGH 7.8

DescriptionNVD

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Windows Virtual Delivery Agent for CVAD and Citrix DaaS

Analysis

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Windows Virtual Delivery Agent for CVAD and Citrix DaaS

Technical ContextAI

Privilege escalation allows a low-privileged user or process to gain elevated permissions beyond what was originally authorized. This vulnerability is classified as Improper Privilege Management (CWE-269).

RemediationAI

Apply the principle of least privilege. Keep systems patched. Monitor for suspicious privilege changes. Use mandatory access controls (SELinux, AppArmor).

More from same product – last 7 days

CVE-2026-10044 HIGH This Week POC

8.2 May 28

{filename} endpoint. The flawed traversal guard only rejects forward slashes and '..' sequences, so absolute Windows pat

CVE-2026-40412 CRITICAL Monitor

10.0 May 22

Remote code execution in Microsoft Azure Orbital Spatio allows unauthenticated network attackers to upload dangerous fil

CVE-2026-41104 CRITICAL Monitor

10.0 May 22

Unsafe deserialization in Microsoft Planetary Computer Pro (Geocatalog) lets a remote unauthenticated attacker craft mal

CVE-2026-23652 CRITICAL Monitor

10.0 May 22

Remote code execution in Microsoft Power Pages allows unauthenticated network attackers to inject and execute operating-

CVE-2026-47280 CRITICAL Monitor

10.0 May 22

Privilege elevation in Microsoft Azure Resource Manager (ARM) allows remote unauthenticated attackers to bypass authenti

CVE-2025-6759 vulnerability details – vuln.today

Back

Windows CVE-2025-6759

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

Analysis

Technical ContextAI

RemediationAI

More from same product – last 7 days

Share

External POC / Exploit Code