Data Security, Vulnerability Management, Patch/Configuration Management

Progress ShareFile vulnerabilities allow unauthenticated file exfiltration

As outlined in Bleeping Computer, two critical vulnerabilities in Progress ShareFile, an enterprise file transfer solution, have been discovered that can be chained together to allow unauthenticated file exfiltration. This poses a significant risk to organizations relying on the software for secure data sharing.

Researchers at watchTowr identified an authentication bypass (CVE-2026-2699) and a remote code execution flaw (CVE-2026-2701) within the Storage Zones Controller (SZC) component of Progress ShareFile versions 5.x. The attack chain begins with the authentication bypass, granting access to the admin interface. An attacker can then manipulate storage zone configurations, including file paths and sensitive security parameters. The second vulnerability allows for remote code execution by abusing file upload functionality to deploy malicious webshells. While attackers need to generate valid HMAC signatures and decrypt internal secrets, these steps become feasible after exploiting the initial authentication bypass. Approximately 30,000 SZC instances are exposed publicly according to watchTowr, with around 700 observed by ShadowServer Foundation.

Progress has addressed these vulnerabilities in ShareFile version 5.12.4, released on March 10. While no active exploitation has been reported, the public disclosure of this exploit chain is likely to attract threat actors. Organizations using vulnerable versions of ShareFile Storage Zone Controller are urged to patch immediately to prevent potential data breaches and ransomware attacks.

Source: Bleeping Computer

You can skip this ad in 5 seconds