Over 1,450 pfSense servers exposed to RCE attacks via bug chain

Industry news
Post Reply
rbc
President
Posts: 291
Joined: Mon Oct 30, 2023 1:32 am
Location: Vicksburg, MS
ISC2 Member Status: Yes
Contact:

Over 1,450 pfSense servers exposed to RCE attacks via bug chain

Post by rbc »

Roughly 1,450 pfSense instances exposed online are vulnerable to command injection and cross-site scripting flaws that, if chained, could enable attackers to perform remote code execution on the appliance.

pfSense is a popular open-source firewall and router software that allows extensive customization and deployment flexibility. It is a cost-effective solution that accommodates specific needs, offering a wide range of features typically found in expensive commercial products.

In mid-November, SonarCloud’s researchers discovered three flaws impacting pfSense 2.7.0 and older and pfSense Plus 23.05.01 and older. The flaws are tracked as CVE-2023-42325 (XSS), CVE-2023-42327 (XSS), and CVE-2023-42326 (command injection).
[...]
Over 1,450 pfSense servers exposed to RCE attacks via bug chain
Robert B. Carleton + ISC2 Central Mississippi President
Post Reply