Netgate pfSense 2.7.0

CPE Details

Netgate pfSense 2.7.0
netgate
pfsense
2.7.0
2023-03-22
12h41 +00:00
2023-03-27
13h32 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:netgate:pfsense:2.7.0:*:*:*:*:*:*:*

Informations

Vendor

netgate

Product

pfsense

Version

2.7.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-48123 2023-12-05 23h00 +00:00 An issue in Netgate pfSense Plus v.23.05.1 and before and pfSense CE v.2.7.0 allows a remote attacker to execute arbitrary code via a crafted request to the packet_capture.php file.
8.8
Haute
CVE-2023-42325 2023-11-13 23h00 +00:00 Cross Site Scripting (XSS) vulnerability in Netgate pfSense v.2.7.0 allows a remote attacker to gain privileges via a crafted url to the status_logs_filter_dynamic.php page.
5.4
Moyen
CVE-2023-42326 2023-11-13 23h00 +00:00 An issue in Netgate pfSense v.2.7.0 allows a remote attacker to execute arbitrary code via a crafted request to the interfaces_gif_edit.php and interfaces_gre_edit.php components.
8.8
Haute
CVE-2023-42327 2023-11-13 23h00 +00:00 Cross Site Scripting (XSS) vulnerability in Netgate pfSense v.2.7.0 allows a remote attacker to gain privileges via a crafted URL to the getserviceproviders.php page.
5.4
Moyen
CVE-2023-27253 2023-03-17 00h00 +00:00 A command injection vulnerability in the function restore_rrddata() of Netgate pfSense v2.7.0 allows authenticated attackers to execute arbitrary commands via manipulating the contents of an XML file supplied to the component config.xml.
8.8
Haute