Vulnerabilities

CVE-2023-7102

by Fred · 24/12/2023

Use of a Third Party library produced a vulnerability in Barracuda Networks Inc. Barracuda ESG Appliance which allowed Parameter Injection.This issue affected Barracuda ESG Appliance, from 5.1.3.001 through 9.2.1.001, until Barracuda removed the vulnerable logic.

Date published : 2023-12-24

https://github.com/haile01/perl_spreadsheet_excel_rce_poc

https://github.com/jmcnamara/spreadsheet-parseexcel/blob/c7298592e102a375d43150cd002feed806557c15/lib/Spreadsheet/ParseExcel/Utility.pm#L171

Similar

Tags: Cybersecurity Alert