Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-31814

Published: 05/09/2022 Updated: 14/05/2024
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Pfblockerng

Vulnerability Summary

pfSense pfBlockerNG up to and including 2.1.4_26 allows remote malicious users to execute arbitrary OS commands as root via shell metacharacters in the HTTP Host header. NOTE: 3.x is unaffected.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

netgate pfblockerng

Exploits

Exploit DB: pfBlockerNG 2.1.4_26 - Remote Code Execution (RCE)
# Exploit Title: pfBlockerNG 214_26 - Remote Code Execution (RCE) # Shodan Results: wwwshodanio/search?query=httptitle%3A%22pfSense+-+Login%22+%22Server%3A+nginx%22+%22Set-Cookie%3A+PHPSESSID%3D%22 # Date: 5th of September 2022 # Exploit Author: IHTeam # Vendor Homepage: docsnetgatecom/pfsense/en/latest/packages/pfblockerhtm ...
Exploit DB: pfBlockerNG 2.1.4_26 Remote Code Execution
pfBlockerNG version 214_26 remote code execution exploit ...

Github Repositories

https://github.com/EvergreenCartoons/SenselessViolence

CVE-2022-31814 Exploitation Toolkit.

SenselessViolence CVE-2022-31814 (pfSense pfBlockerNG <= 214_26) Exploitation Toolkit What? This is an exploitation toolkit for the pfSense pfBlockerNG <= 214_26 plugins remote command injection feature discovered by IHTeam I wrote this to play around with some of the design principles found in the NSA's firewall exploitation toolkit - for this reason,

https://github.com/Knownasjohnn/RCE

♥️RCE CVE-2022-31814 git clone githubcom/Knownasjohnn/RCE cd RCE python3 rcepy

https://github.com/TheUnknownSoul/CVE-2022-31814

CVE-2022-31814 Reworked and optimized exploit script of pfBlockerNG 214_26 vulnerability Exploit Title: pfBlockerNG 214_26 - Remote Code Execution (RCE) Shodan Results: wwwshodanio/search?query=httptitle%3A%22pfSense+-+Login%22+%22Server%3A+nginx%22+%22Set-Cookie%3A+PHPSESSID%3D%22 Date: 5th of September 2022 Exploit Author: IHTeam Vendor Homepage: doc

https://github.com/drcayber/RCE

CVE-2022-31814

CVE-2022-31814 WebApp bug import argparse import requests import time import sys import urllibparse from requestspackagesurllib3exceptions import InsecureRequestWarning requestspackagesurllib3disable_warnings(InsecureRequestWarning) parser = argparseArgumentParser(description="pfBlockerNG <= 214_26 Unauth RCE") parseradd_argument('--url'

https://github.com/Madliife0/CVE-2022-31814

CVE-2022-31814

References

CWE-78https://www.ihteam.net/advisory/pfblockerng-unauth-rce-vulnerability/https://docs.netgate.com/pfsense/en/latest/packages/pfblocker.htmlhttp://packetstormsecurity.com/files/168743/pfSense-pfBlockerNG-2.1.4_26-Shell-Upload.htmlhttp://packetstormsecurity.com/files/171123/pfBlockerNG-2.1.4_26-Remote-Code-Execution.htmlhttps://github.com/pfsense/FreeBSD-ports/pull/1169https://github.com/pfsense/FreeBSD-ports/pull/1169/commits/071bdcf2d918c3e51cde11cf81fbd9b6f0379d7ehttps://nvd.nist.govhttps://www.exploit-db.com/exploits/51032https://github.com/EvergreenCartoons/SenselessViolence
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook