7.2
CVSSv2

CVE-2019-6724

Published: 21/03/2019 Updated: 22/03/2019
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 641
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

The barracudavpn component of the Barracuda VPN Client prior to version 5.0.2.7 for Linux, macOS, and OpenBSD runs as a privileged process and can allow an unprivileged local malicious user to load a malicious library, resulting in arbitrary code executing as root.

Vulnerability Trend

Github Repositories

Security Research A collection of files related to my personal security research Additional content will be posted on my blog blogmirchio Tools Tool Description openssldir_check Windows utility to check for potential insecure paths used by the OPENSSLDIR build parameter in OpenSSL libraries ssscache2john Convert SSSD LDAP cache files to John The Ripper form