CVE-2019-12949 — Cross-site Scripting in Pfsense

CWE-79 — Cross-site Scripting2 documents2 sources

Severity

6.1MEDIUMNVD

EPSS

12.4%

top 6.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Netgate Pfsense

Timeline

PublishedJun 25

Latest updateMay 24

Description

In pfSense 2.4.4-p2 and 2.4.4-p3, if it is possible to trick an authenticated administrator into clicking on a button on a phishing page, an attacker can leverage XSS to upload arbitrary executable code, via diag_command.php and rrd_fetch_json.php (timePeriod parameter), to a server. Then, the remote attacker can run any command with root privileges on that server.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages1 packages

▶NVDnetgate/pfsense2.4.4

🔴Vulnerability Details

GHSA

GHSA-4v72-6p9w-2mww: In pfSense 2↗2022-05-24

▶