Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix sharefile vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-7473
In certain situations, all versions of Citrix ShareFile StorageZones (aka storage zones) Controller, including the most recent 5.10.x releases as of May 2020, allow unauthenticated malicious users to access the documents and folders of ShareFile users. NOTE: unlike most CVEs, exp...
Citrix Sharefile Storagezones Controller
Citrix Sharefile Storagezones Controller 5.6.0
Citrix Sharefile Storagezones Controller 5.7.0
Citrix Sharefile Storagezones Controller 5.8.0
Citrix Sharefile Storagezones Controller 5.9.0
1 Github repository
5
CVSSv2
CVE-2020-8982
An unauthenticated arbitrary file read issue exists in all versions of Citrix ShareFile StorageZones (aka storage zones) Controller, including the most recent 5.10.x releases as of May 2020. RCE and file access is granted to everything hosted by ShareFile, be it on-premise or ins...
Citrix Sharefile Storagezones Controller
Citrix Sharefile Storagezones Controller 5.6.0
Citrix Sharefile Storagezones Controller 5.7.0
Citrix Sharefile Storagezones Controller 5.8.0
Citrix Sharefile Storagezones Controller 5.9.0
1 Github repository
5
CVSSv2
CVE-2020-8983
An arbitrary file write issue exists in all versions of Citrix ShareFile StorageZones (aka storage zones) Controller, including the most recent 5.10.x releases as of May 2020, which allows remote code execution. RCE and file access is granted to everything hosted by ShareFile, be...
Citrix Sharefile Storagezones Controller
Citrix Sharefile Storagezones Controller 5.6.0
Citrix Sharefile Storagezones Controller 5.7.0
Citrix Sharefile Storagezones Controller 5.8.0
Citrix Sharefile Storagezones Controller 5.9.0
1 Github repository
5.8
CVSSv2
CVE-2014-1910
Citrix ShareFile Mobile and ShareFile Mobile for Tablets prior to 2.4.4 for Android do not verify X.509 certificates from SSL servers, which allow man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Citrix Sharefile Mobile For Tablets
Citrix Sharefile Mobile
4.3
CVSSv2
CVE-2019-7218
Citrix ShareFile prior to 19.23 allows a downgrade from two-factor authentication to one-factor authentication. An attacker with access to the offline victim's otp physical token or virtual app (like google authenticator) is able to bypass the first authentication phase (use...
Citrix Sharefile
5
CVSSv2
CVE-2019-7217
Citrix ShareFile prior to 19.12 allows User Enumeration. It is possible to enumerate application username based on different server responses using the request to check the otp code. No authentication is required.
Citrix Sharefile
10
CVSSv2
CVE-2021-22941
Improper Access Control in Citrix ShareFile storage zones controller prior to 5.11.20 may allow an unauthenticated malicious user to remotely compromise the storage zones controller.
Citrix Sharefile Storagezones Controller
1 Github repository
7.5
CVSSv2
CVE-2021-22891
A missing authorization vulnerability exists in Citrix ShareFile Storage Zones Controller prior to 5.7.3, 5.8.3, 5.9.3, 5.10.1 and 5.11.18 may allow unauthenticated remote compromise of the Storage Zones Controller.
Citrix Sharefile Storagezones Controller
3.5
CVSSv2
CVE-2018-16968
Citrix ShareFile StorageZones Controller prior to 5.4.2 allows Directory Traversal.
Citrix Sharefile Storagezones Controller
4
CVSSv2
CVE-2018-16969
Citrix ShareFile StorageZones Controller prior to 5.4.2 has Information Exposure Through an Error Message.
Citrix Sharefile Storagezones Controller
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »