CVE-2023-2868βBarracuda Networks ESG Appliance Improper Input Validation Vulnerability
PUBLISHEDvulnerability record
2023-05-26 Β· last modified June 21, 2025
Metadata
Vulnerability Name
Barracuda Networks ESG Appliance Improper Input Validation Vulnerability
Description
Barracuda Email Security Gateway (ESG) appliance contains an improper input validation vulnerability of a user-supplied .tar file, leading to remote command injection.
Known To Be Used in Ransomware Campaigns?
Action
Apply updates per vendor instructions.