Tag
barracuda
Safeguard articles tagged "barracuda" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Vulnerability Analysis
Barracuda ESG CVE-2023-2868 Explained: The Command Injection That Ended in Hardware Replacement
CVE-2023-2868 is a command injection in the Barracuda Email Security Gateway, exploited as a zero-day by UNC4841 for months. Rated CVSS 9.8, it ended with Barracuda advising physical appliance replacement.
Jul 7, 20266 min read
Vulnerability Analysis
Barracuda ESG Zero-Day CVE-2023-2868: When Patching Isn't Enough
Barracuda told customers to physically replace compromised Email Security Gateway appliances. The vulnerability had been exploited since October 2022.
Jun 15, 20236 min read