all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Exploit Released For Barracuda Shell Command Injection Vulnerability

Add to bookmarks
July 6, 2023, 10:34 a.m. | Guru Baran

GBHackers On Security gbhackers.com

The Barracuda Email Security Gateway (ESG) appliance has a remote command injection vulnerability that affects versions 5.1.3.001–9.2.0.006. This vulnerability was identified to be CVE-2023-2868, with a CVSS score of 9.8. It has been actively exploited since October 2022. The flaw stems from a failure to comprehensively sanitize the processing of .tar files (tape archives). Incomplete input […]


The post Exploit Released For Barracuda Shell Command Injection Vulnerability appeared first on GBHackers - Latest Cyber Security News | Hacker News.

actively exploited barracuda command command injection computer security cve cve-2023-2868 cvss cyber security email email security email security gateway esg exploit exploited failure files flaw gateway injection october score security security gateway shell tar vulnerability

Visit resource

More from gbhackers.com / GBHackers On Security

NETGEAR buffer Overflow Vulnerability Let Attackers Bypass Authentication 1 day, 7 hours ago | gbhackers.com
1.0.6 address attacker attackers +30
5000+ CrushFTP Servers Hacked Using Zero-Day Exploit 1 day, 9 hours ago | gbhackers.com
access attacks can crushftp +30
13,142,840 DDoS Attacks Targeted Organization Around The Globe 1 day, 9 hours ago | gbhackers.com
attacks block can crash +16
Hackers Exploit Old Microsoft Office 0-day to Deliver Cobalt Strike 1 day, 10 hours ago | gbhackers.com
attack beacon cobalt cobalt strike +17
Microsoft Publicly Releases MS-DOS 4.0 Source Code 1 day, 12 hours ago | gbhackers.com
code computing cyber-attack cyber security +16
New SSLoad Malware Combined With Tools Hijacking Entire Network Domain 1 day, 13 hours ago | gbhackers.com
addition attack campaign cobalt +24
Palo Alto Networks Shares Remediation Advice for Hacked Firewalls 1 day, 13 hours ago | gbhackers.com
access advice alto breach +26
Analyze Malicious Powershell Scripts by Running Malware in ANY.RUN Sandbox 2 days, 3 hours ago | gbhackers.com
access antivirus any.run attackers +32
Beware! Zero-click RCE Exploit for iMessage Circulating on Hacker Forums 2 days, 7 hours ago | gbhackers.com
apple click code code execution +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Researcher, SIEM

@ Huntress | Remote Canada
View on infosec-jobs.com

Senior Application Security Engineer

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Cyber Security Manager

@ American Express Global Business Travel | United States - New York - Virtual Location
View on infosec-jobs.com

Incident Responder Intern

@ Bentley Systems | Remote, PA, US
View on infosec-jobs.com

SC2024-003533 Senior Online Vulnerability Assessment Analyst (CTS) - THU 9 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com
View more jobs