Barracuda Email Security Gateway < 9.2.0.008 Command Injection (CVE-2023-2868)

critical Nessus Plugin ID 177587

Version 1.4

Sep 1, 2023, 12:11 AM

  • CEA reference

Plugin Feed: 202309010011

Version 1.3

Aug 28, 2023, 8:37 PM

  • Detection (Modified description and see also fields to include notes on the continued exploitation and need to replace a compromised device.)

Plugin Feed: 202308282037

Version 1.2

Jun 26, 2023, 6:11 AM

  • CISA reference
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True". "Exploitability ease" set to "Exploits are available". "Exploited by malware" set to "True")

Plugin Feed: 202306260611

Version 1.1

Jun 26, 2023, 4:00 AM

  • CISA reference
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True". "Exploitability ease" set to "Exploits are available". "Exploited by malware" set to "True")

Plugin Feed: 202306260400

Version 1.0

Jun 23, 2023, 10:04 PM

  • New

Plugin Feed: 202306232204

* Changelogs are generally available for changes made after Nov 1, 2022