Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Critical Vulnerability in Citrix ShareFile Storage Zones Controller
Alerts

Critical Vulnerability in Citrix ShareFile Storage Zones Controller

12 July 2023

Citrix has released security updates to address a critical vulnerability (CVE-2023-24489) impacting customer-managed ShareFile storage zones controllers. The vulnerability is reportedly being actively exploited.

Successful exploitation of the vulnerability could allow an unauthenticated attacker to remotely compromise the customer-managed ShareFile storage zones controller.

The vulnerability affects all currently supported versions of customer-managed ShareFile storage zones controller prior to version 5.11.24.

Users and administrators of affected product versions are advised to update to the latest version immediately.

More information is available here:
https://support.citrix.com/article/CTX559517/sharefile-storagezones-controller-security-update-for-cve202324489
https://blog.assetnote.io/2023/07/04/citrix-sharefile-rce-advisory/