CVE-2023-7102

CVE-2023-7102: Remote Code Execution (RCE) Vulnerability

Vendor Barracuda Networks Inc.
Product Barracuda ESG Appliance
Weakness CWE-1104
Published December 24, 2023
Last update August 2, 2024

CVSS base score

What the vulnerability does

01Description

Use of a Third Party library produced a vulnerability in Barracuda Networks Inc. Barracuda ESG Appliance which allowed Parameter Injection.This issue affected Barracuda ESG Appliance, from 5.1.3.001 through 9.2.1.001, until Barracuda removed the vulnerable logic.

Key dates

02Disclosure timeline

December 24, 2023 CVE published
August 2, 2024 Record updated