CVE-2023-2868

A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). The vulnerability stems from incomplete input validation of a user-supplied .tar file as it pertains to the names of the files contained within the archive. As a consequence, a remote attacker can specifically format these file names in a particular manner that will result in remotely executing a system command through Perl's qx operator with the privileges of the Email Security Gateway product. This issue was fixed as part of BNSF-36456 patch. This patch was automatically applied to all customer appliances.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:barracuda:email_security_gateway_300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:barracuda:email_security_gateway_300:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:barracuda:email_security_gateway_400_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:barracuda:email_security_gateway_400:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:barracuda:email_security_gateway_600_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:barracuda:email_security_gateway_600:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:barracuda:email_security_gateway_800_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:barracuda:email_security_gateway_800:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:barracuda:email_security_gateway_900_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:barracuda:email_security_gateway_900:-:*:*:*:*:*:*:*

History

01 Jun 2023, 20:14

Type Values Removed Values Added
First Time Barracuda email Security Gateway 800 Firmware
Barracuda email Security Gateway 600 Firmware
Barracuda email Security Gateway 800
Barracuda
Barracuda email Security Gateway 900 Firmware
Barracuda email Security Gateway 300
Barracuda email Security Gateway 300 Firmware
Barracuda email Security Gateway 600
Barracuda email Security Gateway 900
Barracuda email Security Gateway 400 Firmware
Barracuda email Security Gateway 400
CWE CWE-77
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CPE cpe:2.3:h:barracuda:email_security_gateway_800:-:*:*:*:*:*:*:*
cpe:2.3:h:barracuda:email_security_gateway_400:-:*:*:*:*:*:*:*
cpe:2.3:h:barracuda:email_security_gateway_600:-:*:*:*:*:*:*:*
cpe:2.3:o:barracuda:email_security_gateway_600_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:barracuda:email_security_gateway_400_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:barracuda:email_security_gateway_300:-:*:*:*:*:*:*:*
cpe:2.3:h:barracuda:email_security_gateway_900:-:*:*:*:*:*:*:*
cpe:2.3:o:barracuda:email_security_gateway_300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:barracuda:email_security_gateway_800_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:barracuda:email_security_gateway_900_firmware:*:*:*:*:*:*:*:*
References (MISC) https://www.barracuda.com/company/legal/esg-vulnerability - (MISC) https://www.barracuda.com/company/legal/esg-vulnerability - Mitigation, Vendor Advisory
References (MISC) https://status.barracuda.com/incidents/34kx82j5n4q9 - (MISC) https://status.barracuda.com/incidents/34kx82j5n4q9 - Vendor Advisory

24 May 2023, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-05-24 19:15

Updated : 2023-12-10 15:01


NVD link : CVE-2023-2868

Mitre link : CVE-2023-2868

CVE.ORG link : CVE-2023-2868


JSON object : View

Products Affected

barracuda

  • email_security_gateway_400_firmware
  • email_security_gateway_900
  • email_security_gateway_800
  • email_security_gateway_400
  • email_security_gateway_300
  • email_security_gateway_800_firmware
  • email_security_gateway_600_firmware
  • email_security_gateway_300_firmware
  • email_security_gateway_900_firmware
  • email_security_gateway_600
CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

CWE-20

Improper Input Validation