Information Exposure Vulnerability in Citrix ShareFile StorageZones Controller
CVE-2018-16969

4.3MEDIUM

Key Information:

Vendor: Citrix
Status: Sharefile Storagezones Controller
Vendor: CVE Published:; 26 September 2018

What is CVE-2018-16969?

The Citrix ShareFile StorageZones Controller, prior to version 5.4.2, is susceptible to a vulnerability that allows for information exposure through error messages. Attackers may exploit this flaw to gain sensitive information inadvertently revealed by the system. Proper error handling measures should be implemented to mitigate this exposure and safeguard sensitive data from unauthorized access.

References

http://www.securityfocus.com/bid/105377

vdb-entryx_refsource_BID

https://support.citrix.com/article/CTX238022

x_refsource_CONFIRM

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 26, 2018
Vulnerability Reserved
Sep 12, 2018