Directory Traversal Vulnerability in Citrix ShareFile StorageZones Controller
CVE-2018-16968

3.1LOW

Key Information:

Vendor: Citrix
Status: Sharefile Storagezones Controller
Vendor: CVE Published:; 26 September 2018

Summary

A vulnerability in Citrix ShareFile StorageZones Controller prior to version 5.4.2 allows an attacker to exploit directory traversal techniques, potentially leading to unauthorized access to files and directories on the server. By manipulating requests, an attacker might gain access to sensitive data outside the intended file structure, presenting a risk for data breaches and privacy issues.

References

http://www.securityfocus.com/bid/105377

vdb-entryx_refsource_BID

https://support.citrix.com/article/CTX238022

x_refsource_CONFIRM

CVSS V3.1

Score:

3.1

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 26, 2018
Vulnerability Reserved
Sep 12, 2018