Rewterz

Rewterz Threat Alert – Covid-19 Malicious URLs

May 5, 2020
Rewterz

Rewterz Threat Advisory – Multiple Mozilla Thunderbird Vulnerabilities

May 6, 2020

Rewterz Threat Advisory – Citrix Sharefile Storage Security Updates

Severity

High

Analysis Summary

Multiple security issues have been identified in customer-managed Citrix ShareFile storage zone controllers. These vulnerabilities can be exploited by malicious actors to to compromise the storage zones controller meaning that giving an attacker the ability to access ShareFile users’ documents and folders.

These vulnerabilities have been given CVE numbers:

  • CVE-2020-7473
  • CVE-2020-8982
  • CVE-2020-8983

Impact

Access sensitive ShareFile documents and folders.

Affected Vendors

Citrix

Affected Products

  • ShareFile storage zones controller version 5.9.0
  • ShareFile storage zones controller version 5.8.0
  • ShareFile storage zones controller version 5.7.0
  • ShareFile storage zones controller version 5.6.0
  • ShareFile storage zones controller version 5.5.0

Remediation

Upgrade your platform to the version 5.10.0 / 5.9.1 / 5.8.1 or later. 

Citrix has also released a  mitigation tool which need to be run on your primary Storage zones controller first and then on any secondary controllers.

The step by step procedure would be found once the it becomes available publicly.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.