Skip to content

Barracuda Networks Releases Update to Address ESG Vulnerability - 20230616001

Overview

Barracuda Networks has released an update to their advisory addressing a vulnerability in their Email Security Gateway Appliance (ESG)

What is the vulnerability?

CVE-2023-2868 - CVSS v3 Base Score: 9.8

What is vulnerable?

The vulnerability exists in the following products:

  • Barracuda Email Security Gateway

What has been observed?

An update to Barracuda's ESG Vulnerability Advisory.

There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.

Recommendation

Barracuda’s remediation recommendation at this time is to follow the mitigation steps as well as hunt for the listed indicators of compromise (IOCs) to uncover any malicious activity.