Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Citrix ShareFile before 19.23 allows a downgrade from two-factor authentication to one-factor authentication. An attacker with access to the offline victim's otp physical token or virtual app (like google authenticator) is able to bypass the first authentication phase (username/password mechanism) and log-in using username/otp combination only (phase 2 of 2FA).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Citrix Systems Citrix ShareFile 授权问题漏洞
Vulnerability Description
Citrix Systems Citrix ShareFile是美国思杰系统(Citrix Systems)公司的一套文件共享解决方案。 Citrix Systems Citrix ShareFile 19.1及之前版本中存在授权问题漏洞。该漏洞源于网络系统或产品中缺少身份验证措施或身份验证强度不足。
CVSS Information
N/A
Vulnerability Type
N/A