CVE-2022-31814

pfBlockerNG 2.1.4_26 - Remote Code Execution (RCE)

Severity Score

9.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Attend

*SSVC

Descriptions

pfSense pfBlockerNG through 2.1.4_26 allows remote attackers to execute arbitrary OS commands as root via shell metacharacters in the HTTP Host header. NOTE: 3.x is unaffected.

pfSense pfBlockerNG versiones hasta 2.1.4_26, permite a atacantes remotos ejecutar comandos arbitrarios del Sistema Operativo como root por medio de metacaracteres de shell en el encabezado HTTP Host. NOTA: la versión 3.x no está afectada

*Credits: N/A

CVSS Scores

NISTv3.1 9.8

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Attend

Exploitation

Poc

Automatable

Yes

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2022-05-31 CVE Reserved
2022-09-05 CVE Published
2023-02-20 First Exploit
2024-08-03 CVE Updated
2024-10-29 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CAPEC

References (13)

URL	Tag	Source
http://packetstormsecurity.com/files/171123/pfBlockerNG-2.1.4_26-Remote-Code-Execution.html
https://github.com/pfsense/FreeBSD-ports/pull/1169
https://github.com/pfsense/FreeBSD-ports/pull/1169/commits/071bdcf2d918c3e51cde11cf81fbd9b6f0379d7e

URL	Date	SRC
https://www.exploit-db.com/exploits/51032	2023-02-20
https://github.com/Laburity/CVE-2022-31814	2024-07-23
https://github.com/Chocapikk/CVE-2022-31814	2023-03-26
https://github.com/Madliife0/CVE-2022-31814	2023-02-22
https://github.com/TheUnknownSoul/CVE-2022-31814	2023-03-03
https://github.com/ArunHAtter/CVE-2022-31814	2024-08-12
https://github.com/dkstar11q/CVE-2022-31814	2023-03-26
http://packetstormsecurity.com/files/168743/pfSense-pfBlockerNG-2.1.4_26-Shell-Upload.html	2024-08-03
https://www.ihteam.net/advisory/pfblockerng-unauth-rce-vulnerability	2024-08-03

URL	Date	SRC

URL	Date	SRC
https://docs.netgate.com/pfsense/en/latest/packages/pfblocker.html	2024-07-03

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Netgate Search vendor "Netgate"		Pfblockerng Search vendor "Netgate" for product "Pfblockerng"				<= 2.1.4_26 Search vendor "Netgate" for product "Pfblockerng" and version " <= 2.1.4_26"		pfsense		Affected