all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New Security Vulnerabilities Uncovered in pfSense Firewall Software - Patch Now

Add to bookmarks
Dec. 15, 2023, 11:02 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Multiple security vulnerabilities have been discovered in the open-source Netgate pfSense firewall solution called pfSense that could be chained by an attacker to execute arbitrary commands on susceptible appliances.
The issues relate to two reflected cross-site scripting (XSS) bugs and one command injection flaw, according to new findings from Sonar.
"Security inside a local network is often

attacker bugs called command command injection cross-site findings firewall flaw injection injection flaw patch pfsense scripting security software solution uncovered vulnerabilities xss

Visit resource

More from thehackernews.com / The Hacker News

Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw 3 hours ago | thehackernews.com
attack attack chain cobalt cobalt strike +19
Bogus npm Packages Used to Trick Software Developers into Installing Malware 11 hours ago | thehackernews.com
backdoor bogus campaign cybersecurity +25
Severe Flaws Disclosed in Brocade SANnav SAN Management Software 1 day, 2 hours ago | thehackernews.com
application area brocade compromise +17
10 Critical Endpoint Security Tips You Should Know 1 day, 5 hours ago | thehackernews.com
breaches business connectivity critical +20
New 'Brokewell' Android Malware Spread Through Fake Browser Updates 1 day, 5 hours ago | thehackernews.com
analysis android android malware banking +15
Palo Alto Networks Outlines Remediation for Critical PAN-OS Flaw Under Attack 1 day, 6 hours ago | thehackernews.com
alto attack command critical +23
Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites 1 day, 10 hours ago | thehackernews.com
accounts admin automatic bug +18
North Korea's Lazarus Group Deploys New Kaolin RAT via Fake Job Lures 1 day, 23 hours ago | thehackernews.com
access actor binary called +19
Network Threats: A Step-by-Step Attack Demonstration 2 days, 5 hours ago | thehackernews.com
access advanced attack attackers +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Principal Security Analyst - Threat Labs (Position located in India) (Remote)

@ KnowBe4, Inc. | Kochi, India
View on infosec-jobs.com

Cyber Security - Cloud Security and Security Architecture - Manager - Multiple Positions - 1500860

@ EY | Dallas, TX, US, 75219
View on infosec-jobs.com

Enterprise Security Architect (Intermediate)

@ Federal Reserve System | Remote - Virginia
View on infosec-jobs.com

Engineering -- Tech Risk -- Global Cyber Defense & Intelligence -- Associate -- Dallas

@ Goldman Sachs | Dallas, Texas, United States
View on infosec-jobs.com

Vulnerability Management Team Lead - North Central region (Remote)

@ GuidePoint Security LLC | Remote in the United States
View on infosec-jobs.com
View more jobs