The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of pfSense

json-c: memory corruption
An attacker can trigger a memory corruption of json-c, in order to trigger a denial of service, and possibly to run code...
CVE-2020-12762, DLA-2228-1, DLA-2228-2, DLA-2301-1, DSA-4741-1, USN-4360-1, USN-4360-2, USN-4360-3, USN-4360-4, VIGILANCE-VUL-32277
FreeBSD: use after free via cryptodev
An attacker can force the usage of a freed memory area via cryptodev of FreeBSD, in order to trigger a denial of service, and possibly to run code...
CVE-2019-15879, FreeBSD-SA-20:15.cryptodev, VIGILANCE-VUL-32254
FreeBSD: buffer overflow via libalias
An attacker can trigger a buffer overflow via libalias of FreeBSD, in order to trigger a denial of service, and possibly to run code...
CVE-2020-7454, CVE-2020-7455, FreeBSD-SA-20:12.libalias, FreeBSD-SA-20:13.libalias, VIGILANCE-VUL-32253, ZDI-20-659, ZDI-20-660, ZDI-20-661
FreeBSD: use after free via ipfw
An attacker can force the usage of a freed memory area via ipfw of FreeBSD, in order to trigger a denial of service, and possibly to run code...
CVE-2019-15874, CVE-2019-5614, FreeBSD-SA-20:10.ipfw, VIGILANCE-VUL-32077
pfSense: multiple vulnerabilities
An attacker can use several vulnerabilities of pfSense...
CVE-2020-10797, CVE-2020-11457, pfSense-SA-20_01.webgui, pfSense-SA-20_02.webgui, pfSense-SA-20_03.webgui, pfSense-SA-20_04.webgui, pfSense-SA-20_05.webgui, pfSense-SA-20_06.webgui, pfSense-SA-20_07.webgui, VIGILANCE-VUL-31886
pfSense: three vulnerabilities via the Web interface
An attacker can use several vulnerabilities via the Web interface of pfSense...
CVE-2019-16667, CVE-2019-16914, CVE-2019-16915, VIGILANCE-VUL-30464
pfSense: shell command injection
An attacker can use a vulnerability of the Web interface of pfSense, in order to run code...
CVE-2019-16701, VIGILANCE-VUL-30449
FreeBSD: privilege escalation via Mqueue Reference Count
An attacker can bypass restrictions via Mqueue Reference Count of FreeBSD, in order to escalate his privileges...
CVE-2019-5603, FreeBSD-SA-19:24.mqueuefs, VIGILANCE-VUL-30097
FreeBSD: information disclosure via /dev/midistat
A local attacker can read a memory fragment via /dev/midistat of FreeBSD, in order to obtain sensitive information...
CVE-2019-5612, FreeBSD-SA-19:23.midi, VIGILANCE-VUL-30096
FreeBSD: denial of service via IPv6 Fragmentation m_pulldown
An attacker can trigger a fatal error via IPv6 Fragmentation m_pulldown() of FreeBSD, in order to trigger a denial of service...
CVE-2019-5611, FreeBSD-SA-19:22.mbuf, VIGILANCE-VUL-30095
Our database contains other pages. You can request a free trial to read them.

Display information about pfSense: