all InfoSec news
Citrix Content Collaboration ShareFile Improper Access Control Vulnerability (CVE-2023-24489)
Nov. 1, 2023, 10:58 p.m. |
FortiGuard Labs | FortiGuard Center - Threat Signal Report fortiguard.fortinet.com
Citrix Content Collaboration is a security-focused collaboration, content sharing and synchronization service from Citrix for the enterprise.
What is the Attack?
CVE-2023-24489 is a directory traversal vulnerability that affects Citrix Systems ShareFile StorageZones Controller prior to 5.11.24.
The vulnerability is due to improper validation of user input in the ProcessRawPostedFile function. A remote, unauthenticated attacker could exploit this vulnerability by sending crafted requests to the target server. Successful exploitation could allow an attacker to save …
access access control attack citrix collaboration control controller cve cve-2023-24489 directory directory traversal enterprise security service sharefile sharing storagezones synchronization systems validation vulnerability what is
More from fortiguard.fortinet.com / FortiGuard Labs | FortiGuard Center - Threat Signal Report
GitLab Password Reset Vulnerability (CVE-2023-7028)
5 days, 16 hours ago |
fortiguard.fortinet.com
Ignite Realtime Openfire Path Traversal Vulnerability (CVE-2023-32315)
6 days, 16 hours ago |
fortiguard.fortinet.com
Jobs in InfoSec / Cybersecurity
XDR Detection Engineer
@ SentinelOne | Italy
Security Engineer L2
@ NTT DATA | A Coruña, Spain
Cyber Security Assurance Manager
@ Babcock | Portsmouth, GB, PO6 3EN
Senior Threat Intelligence Researcher
@ CloudSEK | Bengaluru, Karnataka, India
Cybersecurity Analyst 1
@ Spry Methods | Washington, DC (Hybrid)
Security Infrastructure DevOps Engineering Manager
@ Apple | Austin, Texas, United States