PT-2025-50337 · Barracuda Networks · Barracuda Service Center
Piotr Bazydlo
·
Published
1999-01-01
·
Updated
2025-12-23
·
CVE-2025-34394
CVSS v4.0
10
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H |
Name of the Vulnerable Software and Affected Versions
Barracuda Service Center versions prior to 2025.1.1
Description
Barracuda Service Center, part of the RMM solution, has a .NET Remoting service that does not adequately protect against the deserialization of arbitrary types. This can allow for remote code execution.
Recommendations
Update Barracuda Service Center to version 2025.1.1 or later.
Fix
RCE
Deserialization of Untrusted Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Barracuda Service Center