ID	1090501677
Created	Feb 15, 2023
Updated	Feb 15, 2023
Severity
Default Action	pass
Active
Affected OS	Linux
Affected App	Other
Engine Version	5.0.0 or later

Legend

Enabled/Available
Disabled/Not Available

Update History

Date	Version	Detail
2023-02-15	0.00341

Refine Search

Threat Encyclopedia

Netgate.pfSense.pfBlockerNG.CVE-2022-40624.Command.Injection

Description

This indicates an attack attempt to exploit a Command Injection Vulnerability in Netgate pfSense pfBlockerNG.
This vulnerability is due to improper input validation for the Host HTTP header. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to the target server. Successfully exploiting this vulnerability could result in OS command injection in the context of root.

Affected Products

Netgate pfSense pfBlockerNG 2.1.4_27 and prior

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://github.com/pfsense/FreeBSD-ports/commit/f3c2aecfeba014c699f360d2dde2e79664628651

CVE References

CVE-2022-40624

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiGate

FortiClient

FortiSandBox

FortiMail

FortiADC

FortiWeb

FortiCNP

FortiNDR

FortiDeceptor

FortiEDR

FortiAnalyzer