CVE-2023-24489
Citrix Content Collaboration ShareFile Improper Access Control Vulnerability
CVSS
—
No CVSS
EPSS
95.1%
p100
KEV
YES
Aug 16, 2023
Exploit Today
80
0-100
Published: — · Last modified: —
Product
Citrix / Content Collaboration
Vulnerability
Citrix Content Collaboration ShareFile Improper Access Control Vulnerability
Added to KEV
Aug 16, 2023
Remediate by
Sep 6, 2023
Known ransomware use
No
Summary description
Citrix Content Collaboration contains an improper access control vulnerability that could allow an unauthenticated attacker to remotely compromise customer-managed ShareFile storage zones controllers.
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notes
https://support.citrix.com/article/CTX559517/sharefile-storagezones-controller-security-update-for-cve202324489; https://nvd.nist.gov/vuln/detail/CVE-2023-24489
No related CVEs by CWE or product.