Barracuda advises customers to replace their Email Security Gateway (ESG) appliances immediately if they experienced a zero-day vulnerability.
The company previously disclosed that the flaw wasCVE-2023-2868 has been exploited as a zero day for at least seven months to deliver bespoke malware and steal data.
The vulnerability concerns a case of remote code injection affecting versions 5.1.3.001 through 9.2.0.006 that stems from an incomplete validation of attachments contained in incoming emails.
This latest development comes as Barracuda disclosed earlier that a critical flaw in the devices CVE-202023-188, with a CVSS score of 9.8, could be exploited to deliver bespoke malware and steals data.
👋 Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! 🛍️
If not, consider contributing to my caffeine supply at Buy Me a Coffee ☕️.
Your clicks = cosmic support for more awesome content! 🚀🌈
Leave a Reply