vulnerability
pfSense: pfSense-SA-19_02.sshguard: Anti-brute force protection bypass
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:P/A:N) | Mar 1, 2019 | May 21, 2019 | Mar 27, 2026 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:N)
Published
Mar 1, 2019
Added
May 21, 2019
Modified
Mar 27, 2026
Description
The expiretable configuration in pfSense 2.4.4_1 establishes block durations that are incompatible with the block durations implemented by sshguard, which might make it easier for attackers to bypass intended access restrictions.
Solution
pfsense-upgrade-latest
References
- CVE-2018-20798
- https://attackerkb.com/topics/CVE-2018-20798
- CVE-2018-20799
- https://attackerkb.com/topics/CVE-2018-20799
- CWE-732
- EUVD-EUVD-2018-13341
- https://docs.netgate.com/pfsense/en/latest/install/upgrade-guide.html
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-13341
- https://pfsense.org/security/advisories/pfSense-SA-19_02.sshguard.asc
- https://redmine.pfsense.org/issues/9223
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.