Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
---|---|---|---|---|---|
CVE-2023-29975 | High | Nov 09, 2023 | An issue discovered in Pfsense CE version 2.6.0 allows attackers to change the password of any user without verification. |
2.6.0
|
|
CVE-2023-29974 | Critical | Nov 08, 2023 | An issue discovered in Pfsense CE version 2.6.0 allows attackers to compromise user accounts via weak password requirements. |
2.6.0
|
|
CVE-2023-29973 | Medium | Oct 25, 2023 | Pfsense CE version 2.6.0 is vulnerable to No rate limit which can lead to an attacker creating multiple malicious users in firewall. |
2.6.0
|
|
CVE-2023-27100 | Critical | Mar 22, 2023 | Improper restriction of excessive authentication attempts in the SSHGuard component of Netgate pfSense Plus software v22.05.1 and pfSense CE software v more... |
2.6.0
|
|
BDSA-2022-4034 | Medium | Mar 21, 2023 | pfsense contains a cross-site scripting (XSS) vulnerability due to insufficient sanitization. Successful exploitation of this vulnerability may allow a more... |