Over 1,450 pfSense Servers Exposed RCE Attacks via Bug Chain

Researchers discovered two vulnerabilities in pfSense CE related to Cross-Site Scripting and Command Injection that allow an attacker to execute arbitrary commands on a pfSense appliance.
An attacker with RCE capabilities can control the firewall, monitor traffic on the local network, or target services within the network.
PfSense is a prominent open-source firewall solution developed by Netgate.
To create a dedicated firewall/router for a network, the open-source pfSense Community Edition and pfSense Plus are installed on a physical computer or a virtual machine.
Reflected XSS:. A remote attacker can obtain privileges via a crafted URL to the status logs filter dynamic.
Php page in Netgate pfSense v.2.7.0 due to a Cross-Site Scripting vulnerability.
In this case, an unencoded filter string is reflected into a script tag.
A flaw in Netgate pfSense v.2.7.0 allows a remote attacker to execute arbitrary code by sending a specially crafted request to the interfaces gif edit.
In this case, an unescaped user input is used inside a management shell command.
A remote attacker can obtain privileges via a crafted URL to the getserviceproviders.
Php page in Netgate pfSense v.2.7.0 due to Cross-Site Scripting vulnerability.
This is similar to the first Reflected XSS vulnerability.
The Cross-site scripting vulnerabilities and a Command Injection vulnerability that were found could have been utilized by potential attackers to intercept communications or target local network services.
It is necessary for the victim user to be an admin user or to have access to specific sections of the pfSense WebGui.
PfSense CE 2.7.0 and below pfSense Plus 23.05.1 and below are vulnerable to two XSS vulnerabilities and a Command Injection vulnerability.
The security vulnerabilities are fixed in pfSense CE 2.7.1 and pfSense Plus 23.09.
Regardless of the source, it is advised to encode or escape all variables because there is typically no risk involved.
This method also contributes to a Clean Code state by hardening your code against upcoming modifications or problems found elsewhere in the codebase.

This Cyber News was published on gbhackers.com. Publication date: Wed, 13 Dec 2023 13:13:04 +0000

Cyber News related to Over 1,450 pfSense Servers Exposed RCE Attacks via Bug Chain

Over 1,450 pfSense servers exposed to RCE attacks via bug chain - Roughly 1,450 pfSense instances exposed online are vulnerable to command injection and cross-site scripting flaws that, if chained, could enable attackers to perform remote code execution on the appliance. PfSense is a popular open-source firewall ...
10 months ago Bleepingcomputer.com

Over 1,450 pfSense Servers Exposed RCE Attacks via Bug Chain - Researchers discovered two vulnerabilities in pfSense CE related to Cross-Site Scripting and Command Injection that allow an attacker to execute arbitrary commands on a pfSense appliance. An attacker with RCE capabilities can control the firewall, ...
10 months ago Gbhackers.com

Software Supply Chain Security Checklist - In the ever-evolving landscape of digital innovation, the integrity of software supply chains has become a pivotal cornerstone for organizational security. Software supply chain security is not just about protecting code - it's about safeguarding the ...
9 months ago Feeds.dzone.com

CVE-2024-36919 - In the Linux kernel, the following vulnerability has been resolved: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload The session resources are used by FW and driver when session is offloaded, once session is uploaded these ...
5 months ago Tenable.com

9 Best DDoS Protection Service Providers for 2024 - eSecurity Planet content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. One of the most powerful defenses an organization can employ against distributed ...
11 months ago Esecurityplanet.com

Sophos backports RCE fix after attacks on unsupported firewalls - Sophos was forced to backport a security update for CVE-2022-3236 for end-of-life firewall firmware versions after discovering hackers actively exploiting the flaw in attacks. The flaw is a code injection problem in the User Portal and Webadmin of ...
10 months ago Bleepingcomputer.com

New "MITRE ATT&CK-like" framework outlines software supply chain attack TTPs - A new open framework seeks to outline a comprehensive and actionable way for businesses and security teams to understand attacker behaviors and techniques specifically impacting the software supply chain. The Open Software Supply Chain Attack ...
1 year ago Csoonline.com

JetBrains warns of new TeamCity auth bypass vulnerability - JetBrains urged customers today to patch their TeamCity On-Premises servers against a critical authentication bypass vulnerability that can let attackers take over vulnerable instances with admin privileges. Tracked as CVE-2024-23917, this critical ...
9 months ago Bleepingcomputer.com

3,000 Apache ActiveMQ servers vulnerable to RCE attacks exposed online - Over three thousand internet-exposed Apache ActiveMQ servers are vulnerable to a recently disclosed critical remote code execution vulnerability. Apache ActiveMQ is a scalable open-source message broker that fosters communication between clients and ...
11 months ago Bleepingcomputer.com

Cisco Routers Exposed to Remote Code Execution (RCE) Attacks: How to Protect Your Network - Protecting networks from remote code execution (RCE) attacks is now more important than ever, as thousands of end-of-life Cisco routers are exposed to these vulnerabilities. On June 10, 2020 research revealed that over 19,000 Cisco devices were still ...
1 year ago Bleepingcomputer.com

TellYouThePass ransomware joins Apache ActiveMQ RCE attacks - Internet-exposed Apache ActiveMQ servers are also targeted in TellYouThePass ransomware attacks targeting a critical remote code execution vulnerability previously exploited as a zero-day. The flaw, tracked as CVE-2023-46604, is a maximum severity ...
11 months ago Bleepingcomputer.com

WordPress fixes POP chain exposing websites to RCE attacks - WordPress has released version 6.4.2 that addresses a remote code execution vulnerability that could be chained with another flaw to allow attackers run arbitrary PHP code on the target website. WordPress is a highly popular open-source content ...
10 months ago Bleepingcomputer.com

JetBrains TeamCity Exploits Continue - This week's news includes open-source software vulnerabilities, endangered data, and continued attacks from state-sponsored Russian threat groups. Type of vulnerability: Cross-site scripting and command injection. The problem: Code analysis software ...
10 months ago Esecurityplanet.com

CVE-2024-37354 - In the Linux kernel, the following vulnerability has been resolved: ...
4 months ago

Over 150k WordPress sites at takeover risk via vulnerable plugin - Two vulnerabilities impacting the POST SMTP Mailer WordPress plugin, an email delivery tool used by 300,000 websites, could help attackers take complete control of a site authentication. Last month, Wordfence security researchers Ulysses Saicha and ...
9 months ago Bleepingcomputer.com

UK, ROK sound alarm over North Korean supply chain attacks The Register - The national cybersecurity organizations of the UK and the Republic of Korea have issued a joint advisory warning of an increased volume and sophistication of North Korean software supply chain attacks. "In an increasingly digital and interconnected ...
11 months ago Theregister.com

ConnectWise urges ScreenConnect admins to patch critical RCE flaw - ConnectWise warned customers to patch their ScreenConnect servers immediately against a maximum severity flaw that can be used in remote code execution attacks. This security bug is due to an authentication bypass weakness that attackers can exploit ...
8 months ago Bleepingcomputer.com

Over 20,000 vulnerable Microsoft Exchange servers exposed to attacks - Tens of thousands of Microsoft Exchange email servers in Europe, the U.S., and Asia exposed on the public internet are vulnerable to remote code execution flaws. The mail systems run a software version that is currently unsupported and no longer ...
11 months ago Bleepingcomputer.com

VMware fixes critical code execution flaw in vCenter Server - VMware issued security updates to fix a critical vCenter Server vulnerability that can be exploited to gain remote code execution attacks on vulnerable servers. vCenter Server is the central management hub for VMware's vSphere suite, and it helps ...
11 months ago Bleepingcomputer.com

Juniper warns of critical RCE bug in its firewalls and switches - Juniper Networks has released security updates to fix a critical pre-auth remote code execution vulnerability in its SRX Series firewalls and EX Series switches. Found in the devices' J-Web configuration interfaces and tracked as CVE-2024-21591, this ...
9 months ago Bleepingcomputer.com

Apache OFBiz RCE flaw exploited to find vulnerable Confluence servers - A critical Apache OFBiz pre-authentication remote code execution vulnerability is being actively exploited using public proof of concept exploits. Apache OFBiz is an open-source enterprise resource planning system many businesses use for e-commerce ...
10 months ago Bleepingcomputer.com

CISA Announces Renewal of the Information and Communications Technology Supply Chain Risk Management Task Force - The Task Force, chaired by CISA's National Risk Management Center and the Information Technology and Communications Sector Coordinating Councils, is a public-private partnership composed of a diverse range of representatives from public and private ...
9 months ago Cisa.gov

50K WordPress sites exposed to RCE attacks by critical bug in backup plugin - A critical severity vulnerability in a WordPress plugin with more than 90,000 installs can let attackers gain remote code execution to fully compromise vulnerable websites. Known as Backup Migration, the plugin helps admins automate site backups to ...
10 months ago Bleepingcomputer.com

Recently patched CUPS flaw can be used to amplify DDoS attacks - As Akamai security researchers found, a CVE-2024-47176 security flaw in the cups-browsed daemon that can be chained with three other bugs to gain remote code execution on Unix-like systems via a single UDP packet can also be leveraged to ...
1 month ago Bleepingcomputer.com

North Korean hackers exploit critical TeamCity flaw to breach networks - Microsoft says that the North Korean Lazarus and Andariel hacking groups are exploiting the CVE-2023-42793 flaw in TeamCity servers to deploy backdoor malware, likely to conduct software supply chain attacks. In September, TeamCity fixed a critical ...
11 months ago Bleepingcomputer.com

Latest Cyber News

CVE-2024-43434 - 5 hours ago
CVE-2024-43436 - 5 hours ago
CVE-2024-43438 - 5 hours ago
CVE-2024-43440 - 5 hours ago
CVE-2024-43425 - 5 hours ago
CVE-2024-43426 - 5 hours ago
CVE-2024-43428 - 5 hours ago
CVE-2024-43431 - 5 hours ago
CVE-2024-8442 - 6 hours ago
CVE-2024-24914 - 7 hours ago
CVE-2024-10526 - 8 hours ago
CVE-2024-50169 - 9 hours ago
CVE-2024-50170 - 9 hours ago
CVE-2024-50171 - 9 hours ago
CVE-2024-50172 - 9 hours ago
CVE-2024-51504 - 9 hours ago
CVE-2024-50155 - 9 hours ago
CVE-2024-50156 - 9 hours ago
CVE-2024-50157 - 9 hours ago
CVE-2024-50158 - 9 hours ago

Cyber Trends (last 7 days)

Okta - 11 months ago
23andMe - 11 months ago
Kimsuky - 11 months ago
LogoFAIL - 11 months ago
Gh0st rat - 11 months ago

Trending Cyber News (last 7 days)

CVE-2024-10081 - 1 day ago
CVE-2024-10082 - 1 day ago
CVE-2024-10916 - 1 day ago
CVE-2024-35146 - 1 day ago
CVE-2024-6861 - 1 day ago
CVE-2024-10919 - 1 day ago
CVE-2024-10920 - 1 day ago
CVE-2024-10318 - 1 day ago
CVE-2024-20371 - 1 day ago
CVE-2024-20418 - 1 day ago
CVE-2024-20445 - 1 day ago
CVE-2024-20457 - 1 day ago
CVE-2024-20476 - 1 day ago
CVE-2024-20484 - 1 day ago
CVE-2024-20487 - 1 day ago
CVE-2024-20504 - 1 day ago
CVE-2024-20507 - 1 day ago
CVE-2024-20511 - 1 day ago
CVE-2024-20514 - 1 day ago
CVE-2024-20525 - 1 day ago