CVE-2023-24489
Published: 10 July 2023
Summary
CVE-2023-24489 is a critical-severity Improper Access Control (CWE-284) vulnerability in Citrix Sharefile Storage Zones Controller. Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 0.0% of CVEs by exploit likelihood; CISA has added it to the Known Exploited Vulnerabilities catalog.
The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and SI-2 (Flaw Remediation).
Deeper analysis
A vulnerability tracked as CVE-2023-24489 affects the customer-managed ShareFile storage zones controller. The flaw, assigned a CVSS score of 9.8, stems from improper access control (CWE-284) and permits remote compromise without authentication.
An unauthenticated attacker can exploit the issue over the network to achieve full control of the affected controller, resulting in complete loss of confidentiality, integrity, and availability of the system and any data it manages.
Citrix has published a security update addressing the vulnerability in the ShareFile storage zones controller, and the flaw appears in CISA's catalog of known exploited vulnerabilities, confirming active exploitation in the wild. The associated EPSS score remains elevated, with a current value of 0.9439 and a recorded peak of 0.9745.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-28507
Vulnerability details
A vulnerability has been discovered in the customer-managed ShareFile storage zones controller which, if exploited, could allow an unauthenticated attacker to remotely compromise the customer-managed ShareFile storage zones controller.
- CWE(s)
- KEV Date Added
- 16 August 2023
Related Threats
Threat-Actor AttributionAI
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly enforces authentication and access restrictions on the ShareFile controller, blocking the unauthenticated remote actions permitted by the improper access control flaw.
Requires prompt application of the vendor security update (CTX559517) that eliminates the remotely exploitable access-control weakness.
Mandates authenticated and authorized remote access mechanisms for the customer-managed storage zones controller, reducing exposure to network-reachable unauthenticated compromise.