Multiple flaws in pfSense firewall can lead to arbitrary code execution

Security flaws in Netgate pfSense firewall solution can potentially lead to arbitrary code execution on vulnerable devices. pfSense is a popular open-source firewall solution maintained by Netgate, researchers discovered multiple security issues affecting it. Researchers from SonarCloud discovered several security issues, Cross-Site Scripting (XSS) vulnerabilities and a Command Injection vulnerability in pfSense CE (CVE-2023-42325, CVE-2023-42327, CVE-2023-42326). The […]

arbitrary code breaking news code code execution command command injection cross-site devices firewall flaws hacking information security news injection it information security pfsense pfsense firewall pierluigi paganini popular researchers scripting security security flaws security issues solution vulnerabilities vulnerable xss