CNNVD-202512-1977 Information
CNNVD ID
CNNVD-202512-1977
Related CVE
- CNNVD Published: 2025-12-10
Description (Chinese)
Barracuda Service Center是美国Barracuda公司的一个服务中心软件。 Barracuda Service Center 2025.1.1之前版本存在路径遍历漏洞,该漏洞源于未经验证的攻击者可调用易受路径遍历攻击的方法,可能导致远程代码执行。
Description (English)
Barracuda Service Center is a service centre software for Barracuda in the United States. Prior to Barracuda Service Center 2025.1.1, there was a loophole in the path, which stemmed from the fact that unverified assailants could have access to a way that could be easily attacked and could lead to remote code execution.
Hazard Level
High
Vulnerability Type
路径遍历
Affected Vendor
Barracuda
Published
2025-12-10
Last Modified
2026-02-24
References
https://www.vulncheck.com/advisories/barracuda-rmm-service-center-net-remoting-path-traversal-rce https://download.mw-rmm.barracudamsp.com/PDF/2025.1.1/RN_BRMM_2025.1.1_EN.pdf https://www.barracuda.com/products/msp/network-protection/rmm https://access.redhat.com/security/cve/cve-2025-34395