• Services
    • Asses
      • Compromise Assessment
      • APT Assessment
      • Penetration Testing
      • Secure Architecture Design & Review
      • Red Team Assessment
      • Purple Team Assessment
      • Social Engineering
      • Source Code Review
    • Transform
      • SOC Consultancy
      •     SOC Maturity Assessment
      •     SOC Model Evaluation
      •     SOC Gap Analysis
      •     SIEM Gap Analysis
      •     SIEM Optimization
      •     SOC Content Pack
    • Train
      • Security Awareness and Training
      • Tabletop Exercise
      • Simulated Cyber Attack Exercises
    • Respond
      • Incident Response
      • Incident Analysis
  • Managed Security
    • Managed Security Monitoring
      • Remote SOC
      • Onsite SOC
      • Hybrid SOC
    • Managed Security Services
      • Managed Detection and Response
      • Managed Endpoint Detection and Response
      • Managed Threat Intelligence
      • Managed Threat Hunting
      • Managed Risk-Based SOAR
      • Managed Penetration Testing
  • Solutions
  • Resources
    • Blog
    • Threat Advisory
  • Company
    • About Us
    • Careers
    • Contact
Rewterz Threat Alert – Covid-19 Malicious URLs
May 5, 2020
Rewterz Threat Advisory – Multiple Mozilla Thunderbird Vulnerabilities
May 6, 2020

Rewterz Threat Advisory – Citrix Sharefile Storage Security Updates

May 5, 2020

Severity

High

Analysis Summary

Multiple security issues have been identified in customer-managed Citrix ShareFile storage zone controllers. These vulnerabilities can be exploited by malicious actors to to compromise the storage zones controller meaning that giving an attacker the ability to access ShareFile users’ documents and folders.

These vulnerabilities have been given CVE numbers:

  • CVE-2020-7473
  • CVE-2020-8982
  • CVE-2020-8983

Impact

Access sensitive ShareFile documents and folders.

Affected Vendors

Citrix

Affected Products

  • ShareFile storage zones controller version 5.9.0
  • ShareFile storage zones controller version 5.8.0
  • ShareFile storage zones controller version 5.7.0
  • ShareFile storage zones controller version 5.6.0
  • ShareFile storage zones controller version 5.5.0

Remediation

Upgrade your platform to the version 5.10.0 / 5.9.1 / 5.8.1 or later. 

Citrix has also released a  mitigation tool which need to be run on your primary Storage zones controller first and then on any secondary controllers.

The step by step procedure would be found once the it becomes available publicly.

  • Services
    • Asses
      • Compromise Assessment
      • APT Assessment
      • Penetration Testing
      • Secure Architecture Design & Review
      • Red Team Assessment
      • Purple Team Assessment
      • Social Engineering
      • Source Code Review
    • Respond
      • Incident Response
      • Incident Analysis
  • Transform
    • SOC Consultancy
    •     SOC Maturity Assessment
    •     SOC Model Evaluation
    •     SOC Gap Analysis
    •     SIEM Gap Analysis
    •     SIEM Optimization
    •     SOC Content Pack
  • Train
    • Security Awareness and Training
    • Tabletop Exercise
    • Simulated Cyber Attack Exercises
  • Managed Security
    • Managed Security Monitoring
      • Remote SOC
      • Onsite SOC
      • Hybrid SOC
    • Managed Security Services
      • Managed Detection and Response
      • Managed Endpoint Detection and Response
      • Managed Threat Intelligence
      • Managed Threat Hunting
      • Managed Risk-Based SOAR
      • Managed Penetration Testing
  • Solutions
  • Resources
    • Blog
    • Threat Advisory
  • Company
    • About Us
    • Careers
    • Contact
COPYRIGHT © REWTERZ. ALL RIGHTS RESERVED.