RCE attacks could impact most internet-exposed pfSense instances

13 December 2023

More than 92% of internet-exposed instances of the pfSense open-source firewall and router software could be compromised to achieve remote code execution by chaining the reflective XSS vulnerabilities, tracked as CVE-2023-42325 and CVE-2023-42327, as well as the command injection bug, tracked as CVE-2023-42326, all of which have already been addressed by Netgate, according to BleepingComputer. Brazil, the U.S., Russia, France, and Malaysia accounted for most of the vulnerable pfSense instances, noted SonarSource researchers, who cited a Shodan scan.

Source: SC Magazine

Date:

13 December 2023

Categorie(s):

NEWS

Tag(s):

IT, News, pfSense

Multilogin Antidetect Browser Review 20244 May 2024
Navigating the API Security Landscape: A CEO’s Perspective on Embedding Zero Trust Principles4 May 2024
Lightsail VPN Review: Is Lightsail VPN Safe? [+Best Alternatives]4 May 2024
How Do I Know What New Casinos In New Zealand I Can Trust?4 May 2024
How To Secure Your Business In The Times Of All-pervasive Hackers4 May 2024