A Vulnerability in ShareFile Storage Zones Controller Could Allow for Remote Code Execution | allinfosecnews.com

June 20, 2023, 6:47 a.m. |

Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org

A vulnerability have been discovered in ShareFile Storage Zones Controller which could allow for remote code execution. Storage Zones Controller extends the ShareFile Software as a Service (SaaS) cloud storage. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative …

change cloud cloud storage code code execution install privileges remote code remote code execution saas service sharefile software software as a service storage vulnerability

More from www.cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center

A Vulnerability in SolarWinds Access Rights Manager Could Allow for Privilege Escalation 4 days, 20 hours ago | www.cisecurity.org

access access rights account attacker +14

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution 4 days, 20 hours ago | www.cisecurity.org

arbitrary code arbitrary code execution chrome code +7

Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution 5 days, 16 hours ago | www.cisecurity.org

access arbitrary code arbitrary code execution browser +17

Multiple Vulnerabilities in Siemens Ruggedcom Crossbow Could Allow for Arbitrary Code Execution 5 days, 16 hours ago | www.cisecurity.org

access access management arbitrary code arbitrary code execution +17

Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution 5 days, 19 hours ago | www.cisecurity.org

acrobat adobe adobe acrobat application +17

Critical Patches Issued for Microsoft Products, May 14, 2024 6 days, 1 hour ago | www.cisecurity.org

accounts attacker change code +14

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution 6 days, 1 hour ago | www.cisecurity.org

arbitrary code arbitrary code execution attacker chrome +9

Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution 6 days, 22 hours ago | www.cisecurity.org

apple arbitrary code arbitrary code execution code +6

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution 1 week, 3 days ago | www.cisecurity.org

arbitrary code arbitrary code execution attacker chrome +9

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Principal Security Research Engineer (Prisma Cloud)

@ Palo Alto Networks | Bengaluru, India

View on infosec-jobs.com

National Security Solutions Fall 2024 Co-Op - Positioning, Navigation and Timing (PNT) Intern

@ KBR, Inc. | USA, Beavercreek Township, 4027 Colonel Glenn Highway, Suite 300, Ohio

View on infosec-jobs.com

Sr Principal Embedded Security Software Engineer

@ The Aerospace Corporation | HIA32: Cedar Rapids, IA 400 Collins Rd NE , Cedar Rapids, IA, 52498-0505 USA

View on infosec-jobs.com