22 matches found
Exploit for Improper Access Control in Citrix Sharefile_Storagezones_Controller
Vulnerability Details - CVE: CVE-2021-22941 - Severity...
EUVD-2018-8756
Malware in sbrugna...
EUVD-2018-8757
Malware in sbrugna...
VulnCheck KEV: CVE-2020-8982
An unauthenticated arbitrary file read issue exists in all versions of Citrix ShareFile StorageZones aka storage zones Controller, including the most recent 5.10.x releases as of May 2020. RCE and file access is granted to everything hosted by ShareFile, be it on-premise or inside Citrix...
Citrix ShareFile StorageZones file upload
Added: 08/28/2023 Background ShareFile is a file sharing service. StorageZones are user-maintained storage for ShareFile data. Problem A vulnerability in ShareFile StorageZones Controller allows remote attackers to upload arbitrary files, leading to command execution. Resolution Upgrade to...
Vulnerability fixed in Citrix Sharefile and Content Collaboration
Citrix has fixed a vulnerability in the StorageZones Controller as in use with Sharefile and Content Collaboration. A malicious party could exploit the vulnerability to gain access gain access to sensitive data. Citrix has released updates to fix the vulnerability in Sharefile and Content...
ShareFile Documents Unauthenticated Access (CTX269106)
Security issues have been identified in customer-managed Citrix ShareFile storage zone controllers. These vulnerabilities, if exploited, would allow an unauthenticated attacker to compromise the storage zones controller potentially giving an attacker the ability to access ShareFile usersâ...
Remote code execution
An arbitrary file write issue exists in all versions of Citrix ShareFile StorageZones aka storage zones Controller, including the most recent 5.10.x releases as of May 2020, which allows remote code execution. RCE and file access is granted to everything hosted by ShareFile, be it on-premise or...
CVE-2020-8983
An arbitrary file write issue exists in all versions of Citrix ShareFile StorageZones aka storage zones Controller, including the most recent 5.10.x releases as of May 2020, which allows remote code execution. RCE and file access is granted to everything hosted by ShareFile, be it on-premise or...
CVE-2020-8982
An unauthenticated arbitrary file read issue exists in all versions of Citrix ShareFile StorageZones aka storage zones Controller, including the most recent 5.10.x releases as of May 2020. RCE and file access is granted to everything hosted by ShareFile, be it on-premise or inside Citrix Cloud...
CVE-2020-7473
In certain situations, all versions of Citrix ShareFile StorageZones aka storage zones Controller, including the most recent 5.10.x releases as of May 2020, allow unauthenticated attackers to access the documents and folders of ShareFile users. NOTE: unlike most CVEs, exploitability depends on th...
Citrix StorageZones Controller Improper Access Restrictions / Traversal
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Vulnerabilities product: Citrix StorageZones Controller vulnerable version: all versions before 5.4.2 fixed version: 5.4.2 CVE number: CVE-2018-16968,...
Citrix StorageZones Controller Improper Access Restrictions / Traversal Exploit
Citrix StorageZones Controller versions prior to 5.4.2 suffer from padding oracle, improper access restriction, and path traversal vulnerabilities. ======================================================================= title: Multiple Vulnerabilities product: Citrix StorageZones Controller...
CVE-2018-16968
Citrix ShareFile StorageZones Controller before 5.4.2 allows Directory Traversal...
CVE-2018-16969
Citrix ShareFile StorageZones Controller before 5.4.2 has Information Exposure Through an Error Message...
CVE-2018-16968
Citrix ShareFile StorageZones Controller before 5.4.2 allows Directory Traversal...
CVE-2018-16969
Citrix ShareFile StorageZones Controller before 5.4.2 has Information Exposure Through an Error Message...
Directory traversal
Citrix ShareFile StorageZones Controller before 5.4.2 allows Directory Traversal...
CVE-2018-16968
Citrix ShareFile StorageZones Controller before 5.4.2 allows Directory Traversal...
CVE-2018-16969
Citrix ShareFile StorageZones Controller prior to 5.4.2 has CVE-2018-16969: Information Exposure Through an Error Message. The issue affects all supported versions before 5.4.2 and can disclose local file system paths via error messages. Exploitation requires a compromised or malicious ShareFile ...