all InfoSec news
Exploit Released For Barracuda Shell Command Injection Vulnerability
GBHackers On Security gbhackers.com
The Barracuda Email Security Gateway (ESG) appliance has a remote command injection vulnerability that affects versions 5.1.3.001–9.2.0.006. This vulnerability was identified to be CVE-2023-2868, with a CVSS score of 9.8. It has been actively exploited since October 2022. The flaw stems from a failure to comprehensively sanitize the processing of .tar files (tape archives). Incomplete input […]
The post Exploit Released For Barracuda Shell Command Injection Vulnerability appeared first on GBHackers - Latest Cyber Security News | Hacker News.
actively exploited barracuda command command injection computer security cve cve-2023-2868 cvss cyber security email email security email security gateway esg exploit exploited failure files flaw gateway injection october score security security gateway shell tar vulnerability