Vulnerabilities > Barracuda > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-12-24 CVE-2023-7102 Unspecified vulnerability in Barracuda products
Use of a Third Party library produced a vulnerability in Barracuda Networks Inc.
network
low complexity
barracuda
critical
 9.8
9.8
2023-05-24 CVE-2023-2868 Command Injection vulnerability in Barracuda products
A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006.
network
low complexity
barracuda CWE-77
critical
 9.8
9.8
2020-02-12 CVE-2014-2595 Insufficient Session Expiration vulnerability in Barracuda web Application Firewall 7.8.1.013
Barracuda Web Application Firewall (WAF) 7.8.1.013 allows remote attackers to bypass authentication by leveraging a permanent authentication token obtained from a query string.
network
low complexity
barracuda CWE-613
critical
 9.8
9.8
2017-08-28 CVE-2014-8428 Permissions, Privileges, and Access Controls vulnerability in Barracuda Load Balancer 5.0.0.015
Privilege escalation vulnerability in Barracuda Load Balancer 5.0.0.015 via the use of an improperly protected SSH key.
network
low complexity
barracuda CWE-264
critical
 9.8
9.8
2017-08-28 CVE-2014-8426 Use of Hard-coded Credentials vulnerability in Barracuda Load Balancer 5.0.0.015
Hard coded weak credentials in Barracuda Load Balancer 5.0.0.015.
network
low complexity
barracuda CWE-798
critical
 9.8
9.8