exploitDog

GHSA-hr8v-98c3-7p3x

Опубликовано: 06 сент. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

pfSense pfBlockerNG through 2.1.4_26 allows remote attackers to execute arbitrary OS commands as root via shell metacharacters in the HTTP Host header. NOTE: 3.x is unaffected.

pfSense pfBlockerNG through 2.1.4_26 allows remote attackers to execute arbitrary OS commands as root via shell metacharacters in the HTTP Host header. NOTE: 3.x is unaffected.

Ссылки

EPSS

Процентиль: 100%

0.9436

Критический

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2022-31814

CVSS3: 9.8

nvd

больше 3 лет назад

pfSense pfBlockerNG through 2.1.4_26 allows remote attackers to execute arbitrary OS commands as root via shell metacharacters in the HTTP Host header. NOTE: 3.x is unaffected.

EPSS

Процентиль: 100%

0.9436

Критический

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78