Fixed in SSL VPN 2.5.0
The SSL VPN was vulnerable to an authenticated persistent Remote File Inclusion (RFI) attack resulting in escalated privileges. The vulnerability is fixed in the version listed above.
To ensure maximum protection Barracuda Networks recommends that all customers upgrade to the latest generally available firmware and enable all definition updates.
Link to this page: