CVE-2023-26213

Name of the Vulnerable Software and Affected Versions Barracuda CloudGen WAN versions prior to 8 webui-sdwan-1089-8.3.1-174141891

Description The vulnerability is related to insufficient protection of the web interface structure in Barracuda CloudGen WAN when handling the /ajax/update certificate endpoint. Exploitation of this issue may allow a remote attacker to execute arbitrary commands by sending specially crafted HTTP requests. For example, a name field can contain :password and a password field can contain shell metacharacters.

Recommendations For versions prior to 8 webui-sdwan-1089-8.3.1-174141891, update to version 8 webui-sdwan-1089-8.3.1-174141891 or later to resolve the issue. As a temporary workaround, consider restricting access to the /ajax/update certificate endpoint until a patch is available. Avoid using the name and password fields in the affected API endpoint with potentially malicious input until the issue is resolved.