ID
VAR-201504-0626
TITLE
Barracuda Web Interface Arbitrary Command Injection Vulnerability
Trust: 0.9
sources:
CNVD: CNVD-2015-02430 //
BID: 74033
DESCRIPTION
Barracuda is a general term for a range of hard drive products. There is an arbitrary command injection vulnerability in the Barracuda web interface. Allows an attacker to exploit a vulnerability to execute commands arbitrarily on an affected device. Barracuda is prone to a remote command-injection vulnerability. Barracuda running firmware versions 5.0.0.012 and prior are vulnerable
Trust: 0.81
sources:
CNVD: CNVD-2015-02430 //
BID: 74033
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2015-02430
AFFECTED PRODUCTS
| vendor: | barracuda | model: | running | scope: | lt | version: | 5.0.0.012 | Trust: 0.6 |
| vendor: | barracuda | model: | barracuda | scope: | eq | version: | 5.0.0.012 | Trust: 0.3 |
sources:
CNVD: CNVD-2015-02430 //
BID: 74033
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
CNVD: CNVD-2015-02430
THREAT TYPE
network
Trust: 0.3
sources:
BID: 74033
TYPE
Input Validation Error
Trust: 0.3
sources:
BID: 74033
EXTERNAL IDS
| db: | BID | id: | 74033 | Trust: 0.9 |
| db: | CNVD | id: | CNVD-2015-02430 | Trust: 0.6 |
sources:
CNVD: CNVD-2015-02430 //
BID: 74033
REFERENCES
| url: | http://www.securityfocus.com/bid/74033 | Trust: 0.6 |
| url: | https://www.barracuda.com/products/category/index | Trust: 0.3 |
sources:
CNVD: CNVD-2015-02430 //
BID: 74033
CREDITS
Russell Sanford
Trust: 0.3
sources:
BID: 74033
SOURCES
| db: | CNVD | id: | CNVD-2015-02430 |
| db: | BID | id: | 74033 |
LAST UPDATE DATE
2022-05-17T02:01:10.900000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2015-02430 | date: | 2015-04-16T00:00:00 |
| db: | BID | id: | 74033 | date: | 2015-04-09T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2015-02430 | date: | 2015-04-16T00:00:00 |
| db: | BID | id: | 74033 | date: | 2015-04-09T00:00:00 |