2025-08-20 15:35:08
VulnCheck
PUBLISHED
FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated commandâexecution backdoor in its web interface. The exec_raw.php script exposes a cmd parameter that is passed directly to the underlying shell without sanitation.