CVE-2014-2595

CRITICAL

Barracuda WAF 7.8.1.013 - Auth Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-2595. PoCs published by Nick Hayes.

AI-analyzed exploit summary This exploit demonstrates an authentication bypass vulnerability in Barracuda Web Application Firewall by manipulating URL parameters to gain unauthorized access. The PoC provides a crafted URL that bypasses authentication by setting specific parameters.

Description

Barracuda Web Application Firewall (WAF) 7.8.1.013 allows remote attackers to bypass authentication by leveraging a permanent authentication token obtained from a query string.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nick Hayes · textremotehardware

https://www.exploit-db.com/exploits/39278

View Code ZIP pw:eip

This exploit demonstrates an authentication bypass vulnerability in Barracuda Web Application Firewall by manipulating URL parameters to gain unauthorized access. The PoC provides a crafted URL that bypasses authentication by setting specific parameters.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Barracuda Web Application Firewall 7.8.1.013

No auth needed

Prerequisites: Network access to the target appliance

MITRE ATT&CK