CNNVD-202512-1981 Information

CNNVD ID

CNNVD-202512-1981

Related CVE

CVE-2025-34393

• CNNVD Published: 2025-12-10

Description (Chinese)

Barracuda Service Center是美国Barracuda公司的一个服务中心软件。 Barracuda Service Center 2025.1.1之前版本存在安全漏洞，该漏洞源于未正确验证攻击者控制的WSDL服务名称，可能导致远程代码执行。

Description (English)

Barracuda Service Center is a service centre software for Barracuda in the United States. Prior to Barracuda Service Center 2025.1.1, there was a security loophole that originated from the incorrect verification of the name of the WSDL service controlled by the assailant, which could lead to remote code implementation.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Barracuda

Published

2025-12-10

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/barracuda-rmm-service-center-insecure-reflection-rce https://download.mw-rmm.barracudamsp.com/PDF/2025.1.1/RN_BRMM_2025.1.1_EN.pdf https://www.barracuda.com/products/msp/network-protection/rmm https://access.redhat.com/security/cve/cve-2025-34393

Patch

https://www.barracuda.com/