It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Campus Help Center / Reference

BNSEC-02697 persistent XSS vulnerability in SSL VPN

  • Type: Knowledgebase
  • Date changed: 2 years ago

Solution #00006833

Scope:

Fixed in SSL VPN 2.5.0.4.69

Severity: High

Description:

The product version listed above is vulnerable to an authenticated persistent XSS attack. Successful exploitation requires an attacker to authenticate with the system and then submit a payload into one of the configuration settings. Another user\administrator must then view\modify the affected setting to trigger the attack.

To ensure maximum protection Barracuda Networks recommends that all customers upgrade to the latest generally available firmware and enable all definition updates.

Credits:

Adam Chester

Link to this page:

https://campus.barracuda.com/solution/50160000001436RAAQ