What is CVE-2020-8982?

CVE-2020-8982 is a vulnerability in N/a. Published 2020-05-07.

Is CVE-2020-8982 known to be exploited?

15 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2020-8982

An unauthenticated arbitrary file read issue exists in all versions of Citrix ShareFile StorageZones (aka storage zones) Controller, including the most recent 5.10.x releases as of May 2020. RCE and file access is granted to everything hos…

EPSS: 0.759 (98.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

0xT11/CVE-POC
ARPSyndicate/cvemon
ARPSyndicate/kenzer-templates
DimitriNL/CTX-CVE-2020-7473
Elsfa7-110/kenzer-templates
amcai/myscan
d4n-sec/d4n-sec.github.io
developer3000S/PoC-in-GitHub
hectorgie/PoC-in-GitHub
merlinepedra/nuclei-templates

References

support.citrix.com/article/CTX269106 (x_refsource_CONFIRM)
www.linkedin.com/posts/jonas-hansen-2a2606b_citrix-sharefile-storage-zones-cont… (x_refsource_MISC)
drive.google.com/file/d/1Izd5MF_HHuq8YSwAyJLBErWL_nbe6f9v/view (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-8982?: CVE-2020-8982 is a vulnerability in N/a. Published 2020-05-07.
Is CVE-2020-8982 known to be exploited?: 15 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.