CVE-2021-22941 - AskarLabs CVE Database

CVE-2021-22941

Vendor N/A

Product Citrix ShareFile storage zones controller

Weakness CWE-284

KEV Status Known Exploited

Ransomware Used in campaigns

Published September 23, 2021

Last update October 21, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Improper Access Control in Citrix ShareFile storage zones controller before 5.11.20 may allow an unauthenticated attacker to remotely compromise the storage zones controller.

CISA mandated remediation

02CISA Required Action

Apply updates per vendor instructions.

Key dates

03Disclosure timeline

September 23, 2021 CVE published

October 21, 2025 Record updated

External resources

04References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-22941 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/284.html CISA KEV Reference https://nvd.nist.gov/vuln/detail/CVE-2021-22941

Related vulnerabilities

05Related CVE

CVE-2025-54591 FreshRSS: Unauthenticated users can view default user's information CVE-2024-5168 Improper access control vulnerability in Prodys Quantum Audio codec CVE-2020-3524 Cisco IOS XE ROM Monitor Software Vulnerability CVE-2024-45734 Low Privilege User can View Images on the Host Machine by using the PDF Export feature in Splunk Classic Dashboard CVE-2022-24038 Unauthorized modification in Karmasis Informatics Infraskope SIEM+