CVE-2023-2868 - Barracuda Networks ESG Appliance Improper Input Validation Vulnerability
CVE-2023-2868
Barracuda Networks | Email Security Gateway (ESG) Appliance
- Date Added:
- 2023-05-26
- Due Date:
- 2023-06-16
- Vulnerability Name
Barracuda Networks ESG Appliance Improper Input Validation Vulnerability
- Description
Barracuda Email Security Gateway (ESG) appliance contains an improper input validation vulnerability of a user-supplied .tar file, leading to remote command injection.
- Known To Be Used in Ransomware Campaigns?
Unknown
- Action
Apply updates per vendor instructions.
- Additional Notes
- https://status.barracuda.com/incidents/34kx82j5n4q9; https://nvd.nist.gov/vuln/detail/CVE-2023-2868
Free security scan for your website