all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Barracuda email security appliances hacked via zero-day vulnerability (CVE-2023-2868)

Add to bookmarks
May 25, 2023, 9:50 a.m. | Zeljka Zorz

Help Net Security www.helpnetsecurity.com

A vulnerability (CVE-2023-2868) in Barracuda Networks’ Email Security Gateway (ESG) appliances has been exploited by attackers, the company has warned. About CVE-2023-2868 CVE-2023-2868 is a critical remote command injection vulnerability affecting only physical Barracuda Email Security Gateway appliances, versions 5.1.3.001 – 9.2.0.006. “The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). [It] stems from incomplete input validation of a user-supplied .tar file as it pertains to the … More


The post …

0 day attackers barracuda barracuda networks command command injection critical cve cve-2023-2868 don't miss email email security esg exploited gateway hacked hot stuff injection networks physical security security gateway the company vulnerability zero-day zero-day vulnerability

Visit resource

More from www.helpnetsecurity.com / Help Net Security

Net neutrality has been restored 7 hours ago | www.helpnetsecurity.com
actions broadband communications consumers +24
Stellar Cyber and Acronis team up to provide optimized threat detection solutions for MSPs 12 hours ago | www.helpnetsecurity.com
acronis aim and response cloud +22
Edgio Client-Side Protection enables organizations to secure critical customer data 13 hours ago | www.helpnetsecurity.com
apis browser client client-side +26
IBM to buy HashiCorp in $6.4 billion cash deal, expanding cloud portfolio 14 hours ago | www.helpnetsecurity.com
agreement capabilities cash cloud +18
Dropzone AI raises $16.85 million to combat advanced AI attacks 14 hours ago | www.helpnetsecurity.com
advanced attacks ciso cyber +20
WhyLabs AI Control Center offers teams real-time control over their AI applications 14 hours ago | www.helpnetsecurity.com
applications center control genai +14
ESET integrates with Arctic Wolf to provide greater security visibility 15 hours ago | www.helpnetsecurity.com
arctic arctic wolf arctic wolf networks businesses +19
Sublime Security secures $20 million to strengthen cloud email security and visibility 15 hours ago | www.helpnetsecurity.com
amp board cloud cloud email security +26
56% of cyber insurance claims originate in the email inbox 16 hours ago | www.helpnetsecurity.com
aspect bec bec scams business +30

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom
View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK
View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1
View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India
View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA
View on infosec-jobs.com
View more jobs