CVE-2023-24489

Description

A vulnerability has been discovered in the customer-managed ShareFile storage zones controller which, if exploited, could allow an unauthenticated attacker to remotely compromise the customer-managed ShareFile storage zones controller.

Citrix Systems, Inc.
Severity: CRITICAL
CVE ID: CVE-2023-24489
CVSS Score: 9.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Refrence: NVD MITRE

Proof Of Concept

Nuclei Templates for CVE-2023-24489

Refrence: Project Discovery GitHub

adhikara13

This project is a Python script that exploits the CVE-2023-24489 vulnerability in ShareFile. It allows remote command execution on the target server. The script supports both Windows and Linux (On testing) platforms, and it can be used to exploit individual targets or perform mass checking on a list of URLs.

Refrence: GitHub

whalebone7

POC for CVE-2023-24489 with bash.

Refrence: GitHub

Content on GitHub

codeb0ss | watchers:18

CVE-2023-24489-PoC
CVE-2023-24489 PoC & Exploiter

Refrence: GitHub

Description​

Proof Of Concept​

Content on GitHub​

Description

Proof Of Concept

Content on GitHub