Incorrect access control in the WebUI in OPNsense before version 19.1.8, and pfsense prior to 2.4.4-p3 allows remote authenticated users to escalate privileges to administrator via a specially crafted request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netgate pfsense |
||
netgate pfsense 2.4.4 |
||
opnsense opnsense |