Security Advisory

CVE-2022-24299

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-31 07:21:07

Last updated 2024-08-03 04:07:02

Assigner jpcert

State PUBLISHED

Description

Improper input validation vulnerability in pfSense CE and pfSense Plus (pfSense CE software versions prior to 2.6.0 and pfSense Plus software versions prior to 22.01) allows a remote attacker with the privilege to change OpenVPN client or server settings to execute an arbitrary command.

← Browse all CVEs View on cve.org ↗