CVE-2023-24489
Description
A vulnerability has been discovered in the customer-managed ShareFile storage zones controller which, if exploited, could allow an unauthenticated attacker to remotely compromise the customer-managed ShareFile storage zones controller.
Citrix Systems, Inc.
Severity: CRITICAL
CVE ID: CVE-2023-24489
CVSS Score: 9.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Proof Of Concept
Nuclei Templates for CVE-2023-24489
Refrence: Project Discovery GitHub
adhikara13
This project is a Python script that exploits the CVE-2023-24489 vulnerability in ShareFile. It allows remote command execution on the target server. The script supports both Windows and Linux (On testing) platforms, and it can be used to exploit individual targets or perform mass checking on a list of URLs.
Refrence: GitHub
whalebone7
POC for CVE-2023-24489 with bash.
Refrence: GitHub
Content on GitHub
codeb0ss | watchers:18
CVE-2023-24489-PoC
CVE-2023-24489 PoC & Exploiter
Refrence: GitHub