The Cybersecurity and Infrastructure Safety Company says a Citrix ShareFile flaw is being actively exploited, including it to its Recognized Exploited Vulnerabilities (KEV) catalog.
In response to The Hacker Information, the bug may enable an attacker to realize entry to susceptible situations remotely. The bug was labeled CVE-2023-24489 and given a severity rating of 9.8.
Whereas Citrix addressed the problem in an replace in June, The Hacker Information says the primary proof of energetic exploitation began exhibiting up the next month, in July. This would appear to point that prospects had not but put in the required patch.
With CISA now together with the vulnerability in its KEV catalog, any organizations which have nonetheless not put in the patch ought to accomplish that instantly.
