5 matches found
📄 Barracuda ESG Spreadsheet::ParseExcel Arbitrary Code Execution
This Metasploit module exploits CVE-2023-7102, an arbitrary code execution vulnerability in Barracuda Email Security Gateway ESG appliances. The vulnerability exists in how the Amavis scanner processes Excel attachments using the Perl Spreadsheet::ParseExcel library. The librarys Utility.pm...
CVE-2023-7102
creationtimestamp| type| source ---|---|--- 2023-12-24 23:26:31+00:00| seen| https://t.me/ctinow/159098 2023-12-26 14:20:06+00:00| exploited| https://t.me/truesecator/5247 2023-12-27 09:35:19+00:00| seen| MISP/3eeca3ec-69cf-4e93-9283-db148ac21b9b 2023-12-27 12:16:39+00:00| exploited|...
CVE-2023-7102
Use of a Third Party library produced a vulnerability in Barracuda Networks Inc. Barracuda ESG Appliance which allowed Parameter Injection.This issue affected Barracuda ESG Appliance, from 5.1.3.001 through 9.2.1.001, until Barracuda removed the vulnerable logic...
CVE-2023-7102 Remote Code Execution (RCE) Vulnerability
Use of a Third Party library produced a vulnerability in Barracuda Networks Inc. Barracuda ESG Appliance which allowed Parameter Injection.This issue affected Barracuda ESG Appliance, from 5.1.3.001 through 9.2.1.001, until Barracuda removed the vulnerable logic...
CVE-2023-7102
CVE-2023-7102 is a Barracuda ESG Appliance vulnerability caused by a vulnerable third-party library that allowed parameter injection. Affected versions span 5.1.3.001–9.2.1.001; Barracuda removed the vulnerable logic to fix the issue. No explicit exploitation details are provided in the available...