1,450+ pfSense Servers Vulnerable to Remote Code Execution Attacks via Exploit Chain

13 December 2023

Researchers discovered two vulnerabilities in pfSense CE related to Cross-Site Scripting (XSS) and Command Injection that allow an attacker to execute arbitrary commands on a pfSense appliance. An attacker with RCE capabilities can control the firewall, monitor traffic on the local network, or target services within the network.

Source: GBHackers

Date:

13 December 2023

Categorie(s):

NEWS

Tag(s):

Attacks, Chain, Cyber Security News, pfSense, Security Pro

Oasis Security reels in $35M more to secure nonhuman identities1 May 2024
Senators grill UnitedHealth CEO on Change Healthcare cyberattack1 May 2024
Website Heatmap: What It Is, Why You Need It, And How To Use It1 May 2024
Test Automation: Features, Benefits, And Challenges Of Automated Testing1 May 2024
4 Ways To Remove Mac Purgeable Space1 May 2024