CRITICAL🇵🇱 Wersja polska

CVE-2025-34394

CVSS 10.0v4.0pub. 2025-12-10upd. 2025-12-23

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service that is insufficiently protected against deserialization of arbitrary types. This can lead to remote code execution.

🤖 AI Analysis
How it works

The vulnerable .NET Remoting service is exposed remotely and does not properly verify the types of deserialized data incoming from the client. An attacker can send a crafted payload containing a malicious .NET object, which after deserialization will be executed in the context of the service process. The lack of authentication requirements (PR:N, UI:N) means that the attack can be carried out by any network user without any victim interaction.

Impact

An attacker can obtain full remote code execution (RCE) on the server running Barracuda Service Center, which in practice means the ability to take control of the system managed by the RMM and potentially all end devices managed by it.

Mitigation & patch

Barracuda RMM should be immediately updated to version 2025.1.1 or later, in accordance with the information in the official Release Notes from the vendor. Until the patch is deployed, it is recommended to restrict network access to the .NET Remoting service exclusively to trusted IP addresses using firewall or network segmentation.

Who is affected

Barracuda RMM (Barracuda Service Center) in all versions prior to 2025.1.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Barracuda Rmm

    APP
    Barracuda
    < 2025.1.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEDeserialization
CWE
References

Related vulnerabilities

CVE-2025-34392CRITICAL10.0PL ✓ten sam produkt

Barracuda RMM: path traversal i RCE przez niezweryfikowany URL w WSDL

CVE-2025-34393CRITICAL10.0PL ✓ten sam produkt

Barracuda RMM – RCE przez insecure reflection w Service Center

CVE-2025-34395HIGH8.7ten sam produkt

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Re...

CVE-2023-2868CRITICAL9.4⚠ KEVten sam vendor

A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor...

CVE-2023-7102CRITICAL9.8PL ✓ten sam vendor

Wstrzyknięcie parametrów w Barracuda ESG przez podatną bibliotekę Spreadsheet-ParseExcel