Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-42327

Published: 14/11/2023 Updated: 12/12/2023
CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3
VMScore: 0
Subscribe to Netgate

Vulnerability Summary

Cross Site Scripting (XSS) vulnerability in Netgate pfSense v.2.7.0 allows a remote malicious user to gain privileges via a crafted URL to the getserviceproviders.php page.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

netgate pfsense 2.7.0

Vendor Advisories

Check Point Security Alerts: Netgate pfSense Cross-Site Scripting (CVE-2023-42327)
Check Point Reference: CPAI-2023-1542 Date Published: 28 Feb 2024 Severity: Medium ...

References

CWE-79https://docs.netgate.com/downloads/pfSense-SA-23_08.webgui.aschttps://www.sonarsource.com/blog/pfsense-vulnerabilities-sonarcloud/https://nvd.nist.govhttps://advisories.checkpoint.com/defense/advisories/public/2024/cpai-2023-1542.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook