all InfoSec news
Threat Actors Exploit Known Citrix ShareFile Flaw
Malware Analysis, News and Indicators - Latest topics malware.news
UPDATE -- The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical-severity Citrix bug to its known exploited vulnerabilities catalog and is “strongly urging” organizations to prioritize the patch for the flaw after discovering evidence of exploitation.
The vulnerability (CVE-2023-24489) exists in the Citrix file sharing and transfer application, ShareFile, and if exploited allows unauthenticated attackers to remotely compromise the customer-managed ShareFile storage zone controller. According to the ShareFile website, the storage zone controller is used to host …
agency application bug catalog cisa citrix citrix sharefile critical cve cve-2023-24489 cybersecurity exploit exploitation exploited exploited vulnerabilities file file sharing flaw infrastructure infrastructure security known exploited known exploited vulnerabilities known exploited vulnerabilities catalog organizations patch security severity sharefile sharing threat threat actors transfer update vulnerabilities vulnerability