CVE-2023-7102

CRITICAL

CVSS v3

9.8

CRITICAL

EPSS Score

43.3%

exploit probability

CISA KEV

No

known exploited

Exploitation

SSVC status

Description

Use of a Third Party library produced a vulnerability in Barracuda Networks Inc. Barracuda ESG Appliance which allowed Parameter Injection.This issue affected Barracuda ESG Appliance, from 5.1.3.001 through 9.2.1.001, until Barracuda removed the vulnerable logic.

Technical Details

Published
12/24/2023

Frequently Asked Questions

What is CVE-2023-7102?

Use of a Third Party library produced a vulnerability in Barracuda Networks Inc. Barracuda ESG Appliance which allowed Parameter Injection.This issue affected Barracuda ESG Appliance, from 5.1.3.001 through 9.2.1.001, until Barracuda removed the vulnerable logic.

Is CVE-2023-7102 actively exploited?

Active exploitation of CVE-2023-7102 has not been confirmed. The EPSS score is 43.3%, indicating the estimated probability of exploitation in the next 30 days.

What is the CVSS score for CVE-2023-7102?

CVE-2023-7102 has a CVSS v3 base score of 9.8 (CRITICAL severity).

Is CVE-2023-7102 affecting your environment?

Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.