Unauthorized Access in Citrix ShareFile Storage Zones Controller
CVE-2021-22891

9.8CRITICAL

Key Information:

Vendor: Citrix
Status: Citrix Sharefile Storage Zones Controller
Vendor: CVE Published:; 27 May 2021

Summary

A significant vulnerability in Citrix ShareFile Storage Zones Controller allows unauthenticated remote access, potentially enabling attackers to compromise the system. Affected versions prior to 5.7.3 and specific updates face risks due to inadequate authorization checks, emphasizing the importance of user authentication for protecting sensitive data.

Affected Version(s)

Citrix ShareFile Storage Zones Controller 5.7.3, 5.8.3, 5.9.3, 5.10.1, 5.11.18

References

https://support.citrix.com/article/CTX310780

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 27, 2021
Vulnerability Reserved
Jan 6, 2021