exploitDog

CVE-2018-20799

Опубликовано: 01 мар. 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

In pfSense 2.4.4_1, blocking of source IP addresses on the basis of failed HTTPS authentication is inconsistent with blocking of source IP addresses on the basis of failed SSH authentication (the behavior does not match the sshguard documentation), which might make it easier for attackers to bypass intended access restrictions.

Ссылки

https://redmine.pfsense.org/issues/9223
Exploit
Issue Tracking
Patch
Vendor Advisory
https://redmine.pfsense.org/issues/9223
Exploit
Issue Tracking
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:netgate:pfsense:2.4.4:p1:*:*:*:*:*:*

EPSS

Процентиль: 45%

0.00227

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-556r-ph87-2m55

CVSS3: 7.5

github

больше 3 лет назад

In pfSense 2.4.4_1, blocking of source IP addresses on the basis of failed HTTPS authentication is inconsistent with blocking of source IP addresses on the basis of failed SSH authentication (the behavior does not match the sshguard documentation), which might make it easier for attackers to bypass intended access restrictions.

EPSS

Процентиль: 45%

0.00227

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo