CVE-2021-42711

Name of the Vulnerable Software and Affected Versions Barracuda Network Access Client versions prior to 5.2.2

Description The issue arises when the Barracuda Network Access Client creates a temporary file in a directory with insecure permissions. This file is executed with SYSTEM privileges when an unprivileged user performs a repair operation, potentially leading to exploitation.

Recommendations For versions prior to 5.2.2, update to version 5.2.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the directory where the temporary file is created to minimize the risk of exploitation.