vulnerability

pfSense: pfSense-SA-20_05.webgui: Authenticated Arbitrary File Read/Write in the WebGUI

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:L/Au:S/C:C/I:C/A:C)	Jan 17, 2020	Mar 27, 2020	Feb 18, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:C/I:C/A:C)

Published

Jan 17, 2020

Added

Mar 27, 2020

Modified

Feb 18, 2025

Description

services_captiveportal.php did not fully validate custom logo and background
image file uploads to ensure they contained image data.

An authenticated user granted access to services_captiveportal.php via their
associated privileges, either directly or via group membership, could leverage
this to execute arbitrary code, gain elevated privileges and make arbitrary
changes to the firewall.

Solution

pfsense-upgrade-latest

References

URL-https://docs.netgate.com/pfsense/en/latest/development/system-patches.html
URL-https://docs.netgate.com/pfsense/en/latest/install/upgrade-guide.html
URL-https://redmine.pfsense.org/issues/9804
URL-https://www.netgate.com/assets/downloads/advisories/pfSense-SA-20_05.webgui.asc

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today