CVE-2023-47174: 
Thorn SFTP Gateway vulnerability analysis and mitigation

A critical vulnerability (CVE-2023-47174) was discovered in Thorn SFTP Gateway versions 3.4.0 through 3.4.3. The vulnerability stems from the use of Pivotal Spring Framework for Java deserialization of untrusted data, which is related to CVE-2016-1000027. This vulnerability affects the web admin portal of SFTP Gateway, a solution that facilitates secure file transfers between SFTP clients and cloud storage providers such as Amazon S3, Azure Blob Storage, and Google Cloud Storage (Security Online).

The vulnerability has been assigned a CVSS v3.1 base score of 9.8 (CRITICAL) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. The issue is classified under CWE-502 (Deserialization of Untrusted Data) and specifically involves the processing of untrusted Java deserialized data through the Pivotal Spring Framework (NVD).

The vulnerability enables remote code execution (RCE) capabilities, allowing an attacker to execute arbitrary code on the SFTP Gateway server through the web admin portal. This poses a significant security risk as it could lead to complete system compromise (Security Online).

Organizations are advised to implement several mitigation measures: 1) Upgrade to SFTP Gateway version 3.4.4 which contains the patch, 2) Restrict port 443 access to sysadmin IP addresses only, and 3) Review and remove any network ingress rules on port 443 that allow the range 0.0.0.0/0. For those unable to upgrade immediately, it's crucial to verify that the web admin portal is locked down to specific IP addresses (Thorn Advisory).