On Barracuda CloudGen WAN Private Edge Gateway devices prior to 8 webui-sdwan-1089-8.3.1-174141891, an OS command injection vulnerability exists in /ajax/update_certificate - a crafted HTTP request allows an authenticated malicious user to execute arbitrary commands. For example, a name field can contain :password and a password field can contain shell metacharacters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
barracuda t100b_firmware 8.3.1 |
||
barracuda t200c_firmware 8.3.1 |
||
barracuda t400c_firmware 8.3.1 |
||
barracuda t600d_firmware 8.3.1 |
||
barracuda t900b_firmware 8.3.1 |
||
barracuda t93a_firmware 8.3.1 |
||
barracuda t193a_firmware 8.3.1 |