CRITICAL🇵🇱 Wersja polska

CVE-2025-34393

CVSS 10.0v4.0pub. 2025-12-10upd. 2025-12-23

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not correctly verify the name of an attacker-controlled WSDL service, leading to insecure reflection. This can result in remote code execution through either invocation of arbitrary methods or deserialization of untrusted types.

🤖 AI Analysis
How it works

Barracuda Service Center (part of the RMM solution) does not properly validate the WSDL service name provided by the attacker. This flaw (CWE-470 – Use of Externally-Controlled Input to Select Classes or Code) allows for insecure reflection, i.e., dynamic invocation of arbitrary methods or deserialization of untrusted types. A remote unauthenticated attacker, without requiring user interaction, can provide crafted data to the component, leading to arbitrary code execution on the server.

Impact

An attacker can gain full control over the system running Barracuda Service Center through remote code execution (RCE) – both by invoking arbitrary methods and deserializing untrusted types. Due to the high impact on confidentiality, integrity, and availability of both the target system and related systems, the consequences of compromise may affect the entire managed infrastructure of MSP clients.

Mitigation & patch

Barracuda RMM must be immediately updated to version 2025.1.1 or later. Detailed patch information is available in the official release notes at: https://download.mw-rmm.barracudamsp.com/PDF/2025.1.1/RN_BRMM_2025.1.1_EN.pdf

Who is affected

Barracuda RMM (Barracuda Service Center) in all versions prior to 2025.1.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Barracuda Rmm

    APP
    Barracuda
    < 2025.1.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEDeserialization
CWE
References

Related vulnerabilities

CVE-2025-34392CRITICAL10.0PL ✓ten sam produkt

Barracuda RMM: path traversal i RCE przez niezweryfikowany URL w WSDL

CVE-2025-34394CRITICAL10.0PL ✓ten sam produkt

Barracuda RMM — RCE przez deserializację .NET Remoting w Service Center

CVE-2025-34395HIGH8.7ten sam produkt

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Re...

CVE-2023-2868CRITICAL9.4⚠ KEVten sam vendor

A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor...

CVE-2023-7102CRITICAL9.8PL ✓ten sam vendor

Wstrzyknięcie parametrów w Barracuda ESG przez podatną bibliotekę Spreadsheet-ParseExcel