MEDIUM✓ PATCH🇵🇱 Wersja polska

CVE-2015-0961

CVSS 4.3v2.0pub. 2015-05-25upd. 2026-05-06

Barracuda Web Filter before 8.1.0.005, when SSL Inspection is enabled, does not verify X.509 certificates from upstream SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVSS Vector
AV:N/AC:M/Au:N/C:N/I:P/A:N
  • Barracuda Web Filter

    APP
    Barracuda
    ≤ 8.0.003
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2015-0962MEDIUM4.3ten sam produkt

Barracuda Web Filter 7.x and 8.x before 8.1.0.005, when SSL Inspection is enabled, uses the same root Certific...

CVE-2023-2868CRITICAL9.4⚠ KEVten sam vendor

A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor...

CVE-2025-34393CRITICAL10.0PL ✓ten sam vendor

Barracuda RMM – RCE przez insecure reflection w Service Center

CVE-2025-34392CRITICAL10.0PL ✓ten sam vendor

Barracuda RMM: path traversal i RCE przez niezweryfikowany URL w WSDL

CVE-2025-34394CRITICAL10.0PL ✓ten sam vendor

Barracuda RMM — RCE przez deserializację .NET Remoting w Service Center