New Progress ShareFile flaws can be chained in pre-auth RCE attacks
Summary
Two critical vulnerabilities in Progress ShareFile can be chained together to allow unauthenticated attackers to exfiltrate files from an organization's environment. The vulnerabilities, CVE-2023-47342 and CVE-2023-47343, can lead to remote code execution (RCE).
IFF Assessment
The chaining of these vulnerabilities creates a significant risk for organizations using Progress ShareFile, enabling unauthenticated attackers to gain unauthorized access and steal sensitive data.
Severity
The CVSS score of 9.0 reflects the critical nature of these vulnerabilities, allowing for unauthenticated remote code execution and sensitive data exfiltration, which are severe impacts on confidentiality, integrity, and availability.
Defender Context
Organizations utilizing Progress ShareFile should prioritize patching these vulnerabilities to prevent unauthenticated attackers from exfiltrating sensitive data or executing arbitrary code. Continuous monitoring for suspicious file access or outbound traffic is also recommended.