What is CVE-2023-24489?

CVE-2023-24489 is a vulnerability found in the customer-managed ShareFile storage zones controller, which could allow an unauthenticated attacker to compromise the controller remotely.

How severe is CVE-2023-24489?

CVE-2023-24489 has a severity level of critical with a score of 9.

How do I fix CVE-2023-24489?

To fix CVE-2023-24489, it is recommended to update the Citrix Content Collaboration ShareFile storage zones controller to a version beyond 5.11.24. Please refer to the provided reference for more information.

Where can I find more information about CVE-2023-24489?

More information about CVE-2023-24489 can be found in the provided reference: https://support.citrix.com/article/CTX559517/sharefile-storagezones-controller-security-update-for-cve202324489

Vulnerability/
CVE-2023-24489

Exploited

critical

9.8

CWE

NVD-CWE-Other 284

10/7/2023

21/11/2024

CVE-2023-24489: Citrix Content Collaboration ShareFile Improper Access Control Vulnerability

Q: What software is affected by CVE-2023-24489?

The Citrix Content Collaboration product, specifically the customer-managed ShareFile storage zones controller version up to 5.11.24, is affected by CVE-2023-24489.

First published: Mon Jul 10 2023(Updated: )

A vulnerability has been discovered in the customer-managed ShareFile storage zones controller which, if exploited, could allow an unauthenticated attacker to remotely compromise the customer-managed ShareFile storage zones controller.

Credit: secure@citrix.com secure@citrix.com secure@citrix.com

Affected Software	Affected Version	How to fix
Citrix Content Collaboration
Citrix Sharefile Storage Zones Controller	<5.11.24

Remedy

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2023-24489?
CVE-2023-24489 is a vulnerability found in the customer-managed ShareFile storage zones controller, which could allow an unauthenticated attacker to compromise the controller remotely.
What software is affected by CVE-2023-24489?
The Citrix Content Collaboration product, specifically the customer-managed ShareFile storage zones controller version up to 5.11.24, is affected by CVE-2023-24489.
How severe is CVE-2023-24489?
CVE-2023-24489 has a severity level of critical with a score of 9.
How do I fix CVE-2023-24489?
To fix CVE-2023-24489, it is recommended to update the Citrix Content Collaboration ShareFile storage zones controller to a version beyond 5.11.24. Please refer to the provided reference for more information.
Where can I find more information about CVE-2023-24489?
More information about CVE-2023-24489 can be found in the provided reference: https://support.citrix.com/article/CTX559517/sharefile-storagezones-controller-security-update-for-cve202324489

agent/weakness
agent/type
agent/last-modified-date
agent/first-publish-date
agent/description
agent/severity
agent/remedy
agent/event
agent/title
collector/nvd-api
agent/software-canonical-lookup-request
collector/nvd-latest
collector/nvd-index
agent/softwarecombine
exploited/true
collector/cisa-known-exploited
source/CISA
agent/software-canonical-lookup
agent/references
collector/nvd-cve
source/NVD
agent/author
agent/tags
collector/mitre-cve
source/MITRE
vendor/citrix
canonical/citrix sharefile storage zones controller
canonical/citrix content collaboration

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.