Lucene search
K

26 matches found

RedhatCVE
RedhatCVE
added 2025/12/11 4:3 p.m.4 views

CVE-2025-34395

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service in which an unauthenticated attacker can invoke a method vulnerable to path traversal to read arbitrary files. This vulnerability can be escalated to remote code execution ...

8.7CVSS8.1AI score0.00634EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/11 4:3 p.m.8 views

CVE-2025-34394

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service that is insufficiently protected against deserialization of arbitrary types. This can lead to remote code execution...

10CVSS7.7AI score0.00594EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/11 4:3 p.m.7 views

CVE-2025-34392

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not verify the URL defined in an attacker-controlled WSDL that is later loaded by the application. This can lead to arbitrary file write and remote code execution via webshell upload...

10CVSS8.2AI score0.22007EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/11 4:3 p.m.6 views

CVE-2025-34393

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not correctly verify the name of an attacker-controlled WSDL service, leading to insecure reflection. This can result in remote code execution through either invocation of arbitrary methods or...

10CVSS8.2AI score0.00594EPSS
Exploits0References1
NCSC
NCSC
added 2025/12/11 1:53 p.m.7 views

Vulnerability fixed in Barracuda Service Center

Barracuda has fixed a vulnerability in Barracuda Service Center Specifically for RMM solutions, versions prior to 2025.1.1. The vulnerability is in the inadequate URL authentication in WSDL files that can be manipulated by attackers. This can lead to the overwriting of arbitrary files and externa...

10CVSS7.2AI score0.22007EPSS
Exploits1References2
EUVD
EUVD
added 2025/12/10 6:30 p.m.4 views

EUVD-2025-202434

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service in which an unauthenticated attacker can invoke a method vulnerable to path traversal to read arbitrary files. This vulnerability can be escalated to remote code execution ...

8.7CVSS7.6AI score0.00634EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/10 6:30 p.m.7 views

EUVD-2025-202447

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not verify the URL defined in an attacker-controlled WSDL that is later loaded by the application. This can lead to arbitrary file write and remote code execution via webshell upload...

10CVSS7.7AI score0.22007EPSS
Exploits1References5
EUVD
EUVD
added 2025/12/10 6:30 p.m.4 views

EUVD-2025-202446

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not correctly verify the name of an attacker-controlled WSDL service, leading to insecure reflection. This can result in remote code execution through either invocation of arbitrary methods or...

10CVSS7.7AI score0.00594EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/10 6:30 p.m.6 views

EUVD-2025-202445

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service that is insufficiently protected against deserialization of arbitrary types. This can lead to remote code execution...

10CVSS7.6AI score0.00594EPSS
Exploits0References4
NVD
NVD
added 2025/12/10 4:16 p.m.4 views

CVE-2025-34392

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not verify the URL defined in an attacker-controlled WSDL that is later loaded by the application. This can lead to arbitrary file write and remote code execution via webshell upload...

10CVSS0.22007EPSS
Exploits1References4
NVD
NVD
added 2025/12/10 4:16 p.m.5 views

CVE-2025-34393

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not correctly verify the name of an attacker-controlled WSDL service, leading to insecure reflection. This can result in remote code execution through either invocation of arbitrary methods or...

10CVSS0.00594EPSS
Exploits0References3
NVD
NVD
added 2025/12/10 4:16 p.m.4 views

CVE-2025-34394

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service that is insufficiently protected against deserialization of arbitrary types. This can lead to remote code execution...

10CVSS0.00594EPSS
Exploits0References3
OSV
OSV
added 2025/12/10 4:16 p.m.5 views

CVE-2025-34394

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service that is insufficiently protected against deserialization of arbitrary types. This can lead to remote code execution...

9.8CVSS6.2AI score0.00594EPSS
Exploits0References3
NVD
NVD
added 2025/12/10 4:16 p.m.4 views

CVE-2025-34395

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service in which an unauthenticated attacker can invoke a method vulnerable to path traversal to read arbitrary files. This vulnerability can be escalated to remote code execution ...

8.7CVSS0.00634EPSS
Exploits0References3
OSV
OSV
added 2025/12/10 4:16 p.m.6 views

CVE-2025-34392

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not verify the URL defined in an attacker-controlled WSDL that is later loaded by the application. This can lead to arbitrary file write and remote code execution via webshell upload...

9.8CVSS6.5AI score0.22007EPSS
Exploits1References4
OSV
OSV
added 2025/12/10 4:16 p.m.6 views

CVE-2025-34395

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service in which an unauthenticated attacker can invoke a method vulnerable to path traversal to read arbitrary files. This vulnerability can be escalated to remote code execution ...

7.5CVSS6.4AI score0.00634EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/10 3:44 p.m.58 views

CVE-2025-34392 Barracuda RMM < 2025.1.1 Service Center Absolute Path Traversal RCE

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not verify the URL defined in an attacker-controlled WSDL that is later loaded by the application. This can lead to arbitrary file write and remote code execution via webshell upload...

10CVSS0.22007EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/12/10 3:44 p.m.3 views

CVE-2025-34392 Barracuda RMM < 2025.1.1 Service Center Absolute Path Traversal RCE

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not verify the URL defined in an attacker-controlled WSDL that is later loaded by the application. This can lead to arbitrary file write and remote code execution via webshell upload...

10CVSS7.9AI score0.22007EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.3 views

Barracuda Service Center 代码问题漏洞

Barracuda Service Center is a service center software from Barracuda USA. A code issue vulnerability exists in Barracuda Service Center versions prior to 2025.1.1, which stems from insufficient protection of the .NET Remoting service and could lead to remote code execution...

10CVSS8.4AI score0.00594EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/10 12:0 a.m.6 views

PT-2025-50335

Name of the Vulnerable Software and Affected Versions Barracuda Service Center versions prior to 2025.1.1 Description Barracuda Service Center, as implemented in the RMM solution, does not validate the URL specified in a WSDL file controlled by an attacker, which is subsequently loaded by the...

10CVSS8AI score0.22007EPSS
Exploits1References10
Rows per page
Query Builder