CVE-2023-2868
Barracuda Networks ESG Appliance Improper Input Validation Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
YesDecision
Descriptions
A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). The vulnerability stems from incomplete input validation of a user-supplied .tar file as it pertains to the names of the files contained within the archive. As a consequence, a remote attacker can specifically format these file names in a particular manner that will result in remotely executing a system command through Perl's qx operator with the privileges of the Email Security Gateway product. This issue was fixed as part of BNSF-36456 patch. This patch was automatically applied to all customer appliances.
Barracuda Email Security Gateway (ESG) appliance contains an improper input validation vulnerability of a user-supplied .tar file, leading to remote command injection.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-05-24 CVE Reserved
- 2023-05-24 CVE Published
- 2023-05-26 Exploited in Wild
- 2023-06-16 KEV Due Date
- 2023-08-25 First Exploit
- 2024-08-02 CVE Updated
- 2024-11-03 EPSS Updated
CWE
- CWE-20: Improper Input Validation
- CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')
CAPEC
- CAPEC-253: Remote Code Inclusion
References (3)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/krmxd/CVE-2023-2868 | 2023-08-25 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://status.barracuda.com/incidents/34kx82j5n4q9 | 2023-06-01 | |
| https://www.barracuda.com/company/legal/esg-vulnerability | 2023-06-01 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Barracuda Search vendor "Barracuda" | Email Security Gateway 300 Firmware Search vendor "Barracuda" for product "Email Security Gateway 300 Firmware" | >= 5.1.3.001 <= 9.2.0.006 Search vendor "Barracuda" for product "Email Security Gateway 300 Firmware" and version " >= 5.1.3.001 <= 9.2.0.006" | - |
Affected
| in | Barracuda Search vendor "Barracuda" | Email Security Gateway 300 Search vendor "Barracuda" for product "Email Security Gateway 300" | - | - |
Safe
|
| Barracuda Search vendor "Barracuda" | Email Security Gateway 400 Firmware Search vendor "Barracuda" for product "Email Security Gateway 400 Firmware" | >= 5.1.3.001 <= 9.2.0.006 Search vendor "Barracuda" for product "Email Security Gateway 400 Firmware" and version " >= 5.1.3.001 <= 9.2.0.006" | - |
Affected
| in | Barracuda Search vendor "Barracuda" | Email Security Gateway 400 Search vendor "Barracuda" for product "Email Security Gateway 400" | - | - |
Safe
|
| Barracuda Search vendor "Barracuda" | Email Security Gateway 600 Firmware Search vendor "Barracuda" for product "Email Security Gateway 600 Firmware" | >= 5.1.3.001 <= 9.2.0.006 Search vendor "Barracuda" for product "Email Security Gateway 600 Firmware" and version " >= 5.1.3.001 <= 9.2.0.006" | - |
Affected
| in | Barracuda Search vendor "Barracuda" | Email Security Gateway 600 Search vendor "Barracuda" for product "Email Security Gateway 600" | - | - |
Safe
|
| Barracuda Search vendor "Barracuda" | Email Security Gateway 800 Firmware Search vendor "Barracuda" for product "Email Security Gateway 800 Firmware" | >= 5.1.3.001 <= 9.2.0.006 Search vendor "Barracuda" for product "Email Security Gateway 800 Firmware" and version " >= 5.1.3.001 <= 9.2.0.006" | - |
Affected
| in | Barracuda Search vendor "Barracuda" | Email Security Gateway 800 Search vendor "Barracuda" for product "Email Security Gateway 800" | - | - |
Safe
|
| Barracuda Search vendor "Barracuda" | Email Security Gateway 900 Firmware Search vendor "Barracuda" for product "Email Security Gateway 900 Firmware" | >= 5.1.3.001 <= 9.2.0.006 Search vendor "Barracuda" for product "Email Security Gateway 900 Firmware" and version " >= 5.1.3.001 <= 9.2.0.006" | - |
Affected
| in | Barracuda Search vendor "Barracuda" | Email Security Gateway 900 Search vendor "Barracuda" for product "Email Security Gateway 900" | - | - |
Safe
|