CVE-2021-22891

9.8CRITICAL

Key Information

Vendor: Citrix
Status: Citrix Sharefile Storage Zones Controller
Vendor: CVE Published:; 27 May 2021

Summary

A missing authorization vulnerability exists in Citrix ShareFile Storage Zones Controller before 5.7.3, 5.8.3, 5.9.3, 5.10.1 and 5.11.18 may allow unauthenticated remote compromise of the Storage Zones Controller.

Affected Version(s)

Citrix ShareFile Storage Zones Controller = 5.7.3, 5.8.3, 5.9.3, 5.10.1, 5.11.18

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
May 27, 2021
Vulnerability Reserved.
Jan 6, 2021

Collectors

NVD DatabaseMitre Database