CVE-2020-19201

Опубликовано: 12 июл. 2021

Источник: nvd

CVSS3: 5.4

CVSS2: 3.5

EPSS Низкий

Описание

A Stored Cross-Site Scripting (XSS) vulnerability was found in status_filter_reload.php, a page in the pfSense software WebGUI, on Netgate pfSense version 2.4.4-p2 and earlier. The page did not encode output from the filter reload process, and a stored XSS was possible via the descr (description) parameter on NAT rules.

Ссылки

https://docs.netgate.com/pfsense/en/latest/releases/2-4-4-p3.html
Product
Vendor Advisory
https://gist.github.com/dharmeshbaskaran/fd3779006361d07651a883e8a040d916
Exploit
Third Party Advisory
https://www.pfsense.org/download/
Vendor Advisory
https://docs.netgate.com/pfsense/en/latest/releases/2-4-4-p3.html
Product
Vendor Advisory
https://gist.github.com/dharmeshbaskaran/fd3779006361d07651a883e8a040d916
Exploit
Third Party Advisory
https://www.pfsense.org/download/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:netgate:pfsense:*:*:*:*:*:*:*:*

Версия до 2.4.4 (включая)

cpe:2.3:a:netgate:pfsense:2.4.4:p1:*:*:*:*:*:*

cpe:2.3:a:netgate:pfsense:2.4.4:p2:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00795

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-5rh9-j8fm-2vv4

github

больше 3 лет назад

Netgate pfSense 2.4.4 - p2 is affected by: Cross Site Scripting (XSS). The impact is: Authenticated Stored XSS in NAT Configuration (local). The component is: Description Text box, Status/Reload Filter Page. The attack vector is: An attacker get access to the victim's session by performing the CSRF and gather the cookie and session ids or possibly can change the victims NAT configuration using this Stored XSS. This attack can possibly spoof the victim's informations.