Browse all 16 CVE security advisories affecting Netgate. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Netgate develops network security solutions, primarily focusing on firewall and VPN technologies using pfSense and OPNsense platforms. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and authentication issues. The company has addressed security concerns through regular patches, though some incidents have exposed weaknesses in default configurations and administrative interfaces. Netgate's products remain widely deployed in enterprise environments, requiring careful hardening to mitigate risks associated with their 16 documented CVEs. Security researchers have noted that while vulnerabilities exist, prompt vendor response typically limits exploitation potential in properly maintained deployments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-34178 | Netgate pfSense CE Suricata package v7.0.8_2 Stored Cross-Site Scripting — pfSense CECWE-79 | 5.4AI | MediumAI | 2025-09-09 |
| CVE-2025-34177 | Netgate pfSense CE Suricata package v7.0.8_2 Stored Cross-Site Scripting — pfSense CECWE-79 | 5.4AI | MediumAI | 2025-09-09 |
| CVE-2025-34176 | Netgate pfSense CE Suricata Package v7.0.8_2 Directory Traversal Information Disclosure — pfSense CECWE-22 | 4.3AI | MediumAI | 2025-09-09 |
| CVE-2025-34175 | Netgate pfSense CE Suricata package v7.0.8_2 Reflected Cross-Site Scripting — pfSense CECWE-79 | 6.1AI | MediumAI | 2025-09-09 |
| CVE-2025-34174 | Netgate pfSense CE Status_Traffic_Totals Package v2.3.2_7 Stored Cross-Site Scripting — pfSense CECWE-79 | 5.4AI | MediumAI | 2025-09-09 |
| CVE-2025-34173 | Netgate pfSense CE Snort package v4.1.6_25 Directory Traversal Information Disclosure — pfSense CECWE-22 | 4.3AI | MediumAI | 2025-09-09 |
| CVE-2025-34172 | Netgate pfSense CE HAProxy Package 0.63_10 Reflected Cross-Site Scripting — pfSense CECWE-79 | 6.1AI | MediumAI | 2025-09-09 |
This page lists every published CVE security advisory associated with Netgate. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.