Barracuda, a provider of email and network security solutions, has contacted several businesses that were targeted by a zero-day vulnerability discovered in some of the company’s appliances.
A zero-day vulnerability was recently discovered in the company’s Email Security Gateway (ESG) appliances.
The CVE-2023-2868 vulnerability is described as a remote command injection flaw.
Barracuda applied two fixes over the weekend, effectively resolving the issue. However, the company learned on Tuesday that some of its clients were still compromised by unidentified threat actors.