Citrix advisory on Microsoft Windows Print Spooler Vulnerabilities (CVE-2021-34527 & CVE-2021-1675)

Citrix advisory on Microsoft Windows Print Spooler Vulnerabilities (CVE-2021-34527 & CVE-2021-1675)

book

Article ID: CTX319956

calendar_today

Updated On:

Description

Citrix is aware of two recently announced vulnerabilities in Microsoft Windows Print Spooler service (CVE-2021-1675 and CVE-2021-34527, also known as “PrintNightmare”). Whilst these vulnerabilities do not directly affect Citrix products, Citrix customers may be concerned about the impact of applying any workarounds and/or updates to their Citrix environments.

Environment

Citrix is not responsible for and does not endorse or accept any responsibility for the contents or your use of these third party Web sites. Citrix is providing these links to you only as a convenience, and the inclusion of any link does not imply endorsement by Citrix of the linked Web site. It is your responsibility to take precautions to ensure that whatever Web site you use is free of viruses or other harmful items.

Resolution

Microsoft has provided temporary workarounds and is also releasing security updates to address the vulnerabilities.

Citrix has not fully tested the temporary workarounds that Microsoft has provided but expects that these workarounds are likely to cause some adverse effects to Citrix users. These include, but are not limited to, problems using Citrix Universal Print Server.

Citrix has performed functional testing of the Microsoft security updates and has not identified an impact to Citrix functionality. However, we will continue to monitor the situation and update this guidance if necessary..

Additional Information

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-1675
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34481
Powered by Wolken Software