Load Balancer Adc

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:barracuda:load_balancer_adc:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorBarracuda (e0123b87-3b17-55c2-9356-13686d24ca66)
ProductLoad Balancer Adc (ef18b340-7888-5854-a877-2329d25a2fd1)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-5648 vulnerable 2026-06-03 14:40:35.901522 LDAP Credential Exposure in Barracuda Load Balancer ADC
HIGH (8.7)
Authenticated, administrative access to a Barracuda Load Balancer ADC running unpatched firmware <= v6.4 allows one to edit the LDAP service configuration of the balancer and change the LDAP server to an attacker-controlled system, without having to re-enter LDAP credentials. These steps can be used by any authenticated administrative user to expose the LDAP credentials configured in the LDAP connector over the network.
Published: 2020-03-12T13:00:16.318Z
Updated: 2024-09-17T01:21:54.238Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2017-6320 vulnerable 2026-06-03 14:37:27.573708 Details available
A remote command injection vulnerability exists in the Barracuda Load Balancer product line (confirmed on v5.4.0.004 (2015-11-26) and v6.0.1.006 (2016-08-19); fixed in 6.1.0.003 (2017-01-17)) in which an authenticated user can execute arbitrary shell commands and gain root privileges. The vulnerability stems from unsanitized data being processed in a system call when the delete_assessment command is issued.
Published: 2017-07-18T14:00:00.000Z
Updated: 2024-08-05T15:25:48.957Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.