The Barracuda Email Security Gateway (ESG) appliance has a remote command injection vulnerability that affects versions 5.1.3.001–9.2.0.006. This vulnerability was identified to be CVE-2023-2868, with a CVSS score of 9.8. It has been actively exploited since October 2022. The flaw stems from a failure to comprehensively sanitize the processing of .tar files (tape archives). Incomplete input […]
The post Exploit Released For Barracuda Shell Command Injection Vulnerability appeared first on GBHackers – Latest Cyber Security News | Hacker News.
This article has been indexed from GBHackers – Latest Cyber Security News | Hacker News
Read the original article: