HTTP: Citrix ShareFile Storage Zones Controller NeatUpload Directory Traversal
This signature detects attempts to exploit a known vulnerability against NeatUpload library of Citrix ShareFile Storage Zones Controller. A successful attack can lead to directory traversal and arbitrary code execution.
Extended Description
Improper Access Control in Citrix ShareFile storage zones controller before 5.11.20 may allow an unauthenticated attacker to remotely compromise the storage zones controller.
Affected Products
Citrix sharefile_storagezones_controller
Short Name
HTTP:DIR:CITRIX-SHRFLE-DIR-TRV
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2021-22941 CVE-2023-24489 Citrix Controller Directory NeatUpload ShareFile Storage Traversal Zones
Release Date
10/07/2021
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3632
False Positive
Unknown
Vendors
Citrix
CVSS Score
10.0