CVE-2026-22676

HIGH

Barracuda RMM < 2025.2.2 Privilege Escalation via Insecure Directory Permissions

Title source: cna

Description

Barracuda RMM versions prior to 2025.2.2 contain a privilege escalation vulnerability that allows local attackers to gain SYSTEM-level privileges by exploiting overly permissive filesystem ACLs on the C:\Windows\Automation directory. Attackers can modify existing automation content or place attacker-controlled files in this directory, which are then executed under the NT AUTHORITY\SYSTEM account during routine automation cycles, typically succeeding within the next execution cycle.

References (2)

[Vendor Advisory] https://download.mw-rmm.barracudamsp.com/PDF/2025.2.2/RN_BRMM_2025.2.2_EN.pdf

[Third Party Advisory] https://www.vulncheck.com/advisories/barracuda-rmm-privilege-escalation-via-insecure-directory-permissions

Scores

CVSS v3 7.8

EPSS 0.0001

EPSS Percentile 2.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-732

Status published

Products (1)

Barracuda Networks/RMM < 2025.2.2

Published Apr 15, 2026

Tracked Since Apr 16, 2026