Browse all 4 CVE security advisories affecting pfSense. AI-powered Chinese analysis, POCs, and references for each vulnerability.
pfSense serves as a versatile open-source firewall and routing platform, commonly deployed for network security and traffic management. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation and authentication flaws. The platform's modular design allows extensive customization but may introduce complexity-related risks. While no major public security incidents have been widely documented, the 4 current CVEs highlight ongoing maintenance challenges. Regular updates and careful configuration are essential to mitigate potential exploits, as the software's broad functionality increases its attack surface despite its robust security foundation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-26019 | Netgate pfSense CE 路径遍历漏洞 — pfSense CE and pfSense Plus | 8.8 | - | 2022-03-31 |
| CVE-2022-24299 | Netgate pfSense CE 输入验证错误漏洞 — pfSense CE and pfSense Plus | 8.8 | - | 2022-03-31 |
| CVE-2021-20729 | Netgate pfSense CE 跨站脚本漏洞 — pfSense CE and pfSense Plus | 6.1 | - | 2022-03-31 |
| CVE-2022-21132 | pfSense-pkg-WireGuard 路径遍历漏洞 — pfSense-pkg-WireGuard | 6.5 | - | 2022-03-07 |
This page lists every published CVE security advisory associated with pfSense. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.