Barracuda Email Security Gateway Appliance (ESG) Vulnerability
Are you running a physical Email Security Gateway Appliance from Barracuda? The recently identified vulnerability (CVE-2023-2868) is a MAJOR issue. The vulnerability existed in a way that if your unit has been compromised the only solution is to physically replace the unit. Barracuda has posted lots of information and ways to identity if your unit has been compromised so that you can take IMMEDIATE action including taking the unit offline and getting it replaced. Also equally as important in checking if your ESG has been compromised is getting it patched so that it doesn’t get compromised in the future. This is a developing security event so please be sure to check Barracuda’s website for the latest information. If you have questions do not hesitate to reach out to your Lucky 13 Solutions representative.
Barracuda Incident Information: https://www.barracuda.com/company/legal/esg-vulnerability
NIST Vulnerability Report: