Barracuda Web Filter 7.x and 8.x before 8.1.0.005, when SSL Inspection is enabled, uses the same root Certification Authority certificate across different customers' installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the certificate's trust relationship.
AV:N/AC:M/Au:N/C:P/I:N/A:NBarracuda Web Filter
APPBarracuda7.07.0.17.1.08.08.0.0028.0.003
Related vulnerabilities
Barracuda Web Filter before 8.1.0.005, when SSL Inspection is enabled, does not verify X.509 certificates from...
A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor...
Barracuda RMM – RCE przez insecure reflection w Service Center
Barracuda RMM: path traversal i RCE przez niezweryfikowany URL w WSDL
Barracuda RMM — RCE przez deserializację .NET Remoting w Service Center