Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
barracuda vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2019-6724
The barracudavpn component of the Barracuda VPN Client prior to version 5.0.2.7 for Linux, macOS, and OpenBSD runs as a privileged process and can allow an unprivileged local malicious user to load a malicious library, resulting in arbitrary code executing as root.
Barracuda Vpn Client
NA
CVE-2015-0961
Barracuda Web Filter prior to 8.1.0.005, when SSL Inspection is enabled, does not verify X.509 certificates from upstream SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Barracuda Web Filter
9.8
CVSSv3
CVE-2014-8426
Hard coded weak credentials in Barracuda Load Balancer 5.0.0.015.
Barracuda Load Balancer 5.0.0.015
9.8
CVSSv3
CVE-2014-8428
Privilege escalation vulnerability in Barracuda Load Balancer 5.0.0.015 via the use of an improperly protected SSH key.
Barracuda Load Balancer 5.0.0.015
NA
CVE-2006-0833
Multiple cross-site scripting (XSS) vulnerabilities in Barracuda Directory 1.1 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors to the (1) Add URL and (2) Suggest Category module. NOTE: the provenance of this information is unknown; port...
Boonex Barracuda Directory 1.1
7.8
CVSSv3
CVE-2021-42711
Barracuda Network Access Client prior to 5.2.2 creates a Temporary File in a Directory with Insecure Permissions. This file is executed with SYSTEM privileges when an unprivileged user performs a repair operation.
Barracuda Network Access Client
6.1
CVSSv3
CVE-2018-20369
Barracuda Message Archiver 2018 has XSS in the error_msg exception-handling value for the ldap_user parameter to the cgi-mod/ldap_load_entry.cgi module. The injection point of the issue is the Add_Update module.
Barracuda Message Archiver 2018
8.8
CVSSv3
CVE-2017-6320
A remote command injection vulnerability exists in the Barracuda Load Balancer product line (confirmed on v5.4.0.004 (2015-11-26) and v6.0.1.006 (2016-08-19); fixed in 6.1.0.003 (2017-01-17)) in which an authenticated user can execute arbitrary shell commands and gain root privil...
Barracuda Load Balancer Adc
1 EDB exploit
9.8
CVSSv3
CVE-2014-2595
Barracuda Web Application Firewall (WAF) 7.8.1.013 allows remote malicious users to bypass authentication by leveraging a permanent authentication token obtained from a query string.
Barracuda Web Application Firewall 7.8.1.013
1 EDB exploit
NA
CVE-2011-5114
Multiple cross-site scripting (XSS) vulnerabilities in the Authoritative DNS - DNS Zones page in Barracuda Link Balancer 330 Firmware 1.3.2.005 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) zoneid or (2) scope parameter.
Barraguard Barracuda Link Balancer Series Firmware 1.3.2.005
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »