Exploiting pfsense Remote Code Execution – CVE-2022-31814

Greetings everyone, In this write-up, we will be exploring the interesting exploitation that has been done against the pfsense CVE-2022-31814. What is pfsense? pfSense software is a FreeBSD-based operating system designed to install and configure a firewall that can be easily configured via the web interface and installed on any PC. With all of the

#laburity.com #en #2024 #pfsense #Remote #Code #Execution #CVE-2022-31814

·laburity.com·Aug 13, 2024

Exploiting pfsense Remote Code Execution – CVE-2022-31814

Critical Cisco bug lets hackers add root users on SEG devices

Cisco has fixed a critical severity vulnerability that lets attackers add new users with root privileges and permanently crash Security Email Gateway (SEG) appliances using emails with malicious attachments. Tracked as CVE-2024-20401, this arbitrary file write security flaw in the SEG content scanning and message filtering features is caused by an absolute path traversal weakness that allows replacing any file on the underlying operating system.

#bleepingcomputer #EN #2024 #Code #InfoSec #Execution #Path #Gateway #Denial #DoS #Remote #Cisco #RCE #CVE-2024-20401 #SEG

·bleepingcomputer.com·Jul 19, 2024

Critical Cisco bug lets hackers add root users on SEG devices