all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

RCE attacks could impact most internet-exposed pfSense instances

Add to bookmarks
Dec. 13, 2023, 10:04 p.m. | SC Staff

SC Magazine feed for Strategy www.scmagazine.com

More than 92% of internet-exposed instances of the pfSense open-source firewall and router software could be compromised to achieve remote code execution by chaining the reflective XSS vulnerabilities, tracked as CVE-2023-42325 and CVE-2023-42327, as well as the command injection bug, tracked as CVE-2023-42326, all of which have already been addressed by Netgate, according to BleepingComputer.

attacks bug code code execution command command injection compromised cve exposed firewall impact injection internet pfsense rce rce attacks remote code remote code execution router software threat intelligence vulnerabilities vulnerability management xss

Visit resource

More from www.scmagazine.com / SC Magazine feed for Strategy

Impact of organizational structure on ransomware outcomes: Where does your org fit in? 1 day, 1 hour ago | www.scmagazine.com
challenges core security detection expertise +12
AI sparks increasing cyber concerns for execs amid growing adoption 1 day, 6 hours ago | www.scmagazine.com
adoption ai-benefitsrisks aiml artificial +8
More details on rural water system breach sought by legislators 1 day, 6 hours ago | www.scmagazine.com
alejandro mayorkas breach critical-infrastructure-security cyberattack +23
Phishing attack compromises LA County Health Services data 1 day, 6 hours ago | www.scmagazine.com
attack bleepingcomputer compromised data +17
Android device hijacking facilitated by new Brokewell banking trojan 1 day, 6 hours ago | www.scmagazine.com
android android device android devices attacks +14
Microsoft credentials targeted by phishing campaign using Autodesk Drive 1 day, 6 hours ago | www.scmagazine.com
account accounts autodesk campaign +16
Five ways security leaders can demonstrate the business value of cybersecurity 1 day, 9 hours ago | www.scmagazine.com
board board members business business value +11
Rubrik IPO signals potential cybersecurity-led tech market revival 1 day, 22 hours ago | www.scmagazine.com
cloud security cybersecurity data security experts +7
Navigating the cyber seas: Clarity, compliance, and unified endpoint management 2 days ago | www.scmagazine.com
can clarity compass compliance +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Researcher, SIEM

@ Huntress | Remote Canada
View on infosec-jobs.com

Senior Application Security Engineer

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Cyber Security Manager

@ American Express Global Business Travel | United States - New York - Virtual Location
View on infosec-jobs.com

Incident Responder Intern

@ Bentley Systems | Remote, PA, US
View on infosec-jobs.com

SC2024-003533 Senior Online Vulnerability Assessment Analyst (CTS) - THU 9 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com
View more jobs