First published: Wed Dec 01 2021(Updated: )
Barracuda Network Access Client before 5.2.2 creates a Temporary File in a Directory with Insecure Permissions. This file is executed with SYSTEM privileges when an unprivileged user performs a repair operation.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Barracuda Network Access Client | <5.2.2 | |
<5.2.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-42711 is a vulnerability in Barracuda Network Access Client before 5.2.2 that allows an unprivileged user to execute a file with SYSTEM privileges.
CVE-2021-42711 has a severity rating of 7.8, which is considered high.
Barracuda Network Access Client version up to exclusive 5.2.2 on Windows systems is affected by CVE-2021-42711.
To fix CVE-2021-42711, it is recommended to update Barracuda Network Access Client to version 5.2.2 or later.
Yes, you can find more information about CVE-2021-42711 in the GitHub repository of Mandiant Vulnerability Disclosures.