Vulnerability-Lookup

CNVD-2019-08722

Vulnerability from cnvd - Published: 2019-03-29

Title

pfSense访问限制绕过漏洞（CNVD-2019-08722）

Description

pfSense是一套基于FreeBSD Linux的网络防火墙。 pfSense 2.4.4_1版本中存在安全特征问题漏洞。远程攻击者可利用该漏洞绕过访问限制。

Severity

中

Patch Name

pfSense访问限制绕过漏洞（CNVD-2019-08722）的补丁

Patch Description

pfSense是一套基于FreeBSD Linux的网络防火墙。 pfSense 2.4.4_1版本中存在安全特征问题漏洞。远程攻击者可利用该漏洞绕过访问限制。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布漏洞修复程序，请及时关注更新： https://redmine.pfsense.org/attachments/2690/sshguad_by_service_filtering.patch

Reference

https://nvd.nist.gov/vuln/detail/CVE-2018-20798

Impacted products

Name
Pfsense pfSense 2.4.4_1

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-20798"
    }
  },
  "description": "pfSense\u662f\u4e00\u5957\u57fa\u4e8eFreeBSD Linux\u7684\u7f51\u7edc\u9632\u706b\u5899\u3002\n\npfSense 2.4.4_1\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u7279\u5f81\u95ee\u9898\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u8bbf\u95ee\u9650\u5236\u3002",
  "discovererName": "unKnow",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://redmine.pfsense.org/attachments/2690/sshguad_by_service_filtering.patch",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-08722",
  "openTime": "2019-03-29",
  "patchDescription": "pfSense\u662f\u4e00\u5957\u57fa\u4e8eFreeBSD Linux\u7684\u7f51\u7edc\u9632\u706b\u5899\u3002\r\n\r\npfSense 2.4.4_1\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u7279\u5f81\u95ee\u9898\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u8bbf\u95ee\u9650\u5236\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "pfSense\u8bbf\u95ee\u9650\u5236\u7ed5\u8fc7\u6f0f\u6d1e\uff08CNVD-2019-08722\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Pfsense pfSense 2.4.4_1"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-20798",
  "serverity": "\u4e2d",
  "submitTime": "2019-03-04",
  "title": "pfSense\u8bbf\u95ee\u9650\u5236\u7ed5\u8fc7\u6f0f\u6d1e\uff08CNVD-2019-08722\uff09"
}

CVE-2018-20798 (GCVE-0-2018-20798)

Vulnerability from cvelistv5 – Published: 2019-03-01 15:00 – Updated: 2024-08-05 12:12

Summary

The expiretable configuration in pfSense 2.4.4_1 establishes block durations that are incompatible with the block durations implemented by sshguard, which might make it easier for attackers to bypass intended access restrictions.

Severity

No CVSS data available.

CWE

Assigner

mitre

References

1 reference

URL	Tags
https://redmine.pfsense.org/issues/9223	x_refsource_MISC

Date Public

2019-03-01 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T12:12:27.369Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://redmine.pfsense.org/issues/9223"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2019-03-01T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The expiretable configuration in pfSense 2.4.4_1 establishes block durations that are incompatible with the block durations implemented by sshguard, which might make it easier for attackers to bypass intended access restrictions."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-03-01T15:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://redmine.pfsense.org/issues/9223"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-20798",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The expiretable configuration in pfSense 2.4.4_1 establishes block durations that are incompatible with the block durations implemented by sshguard, which might make it easier for attackers to bypass intended access restrictions."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://redmine.pfsense.org/issues/9223",
              "refsource": "MISC",
              "url": "https://redmine.pfsense.org/issues/9223"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-20798",
    "datePublished": "2019-03-01T15:00:00.000Z",
    "dateReserved": "2019-03-01T00:00:00.000Z",
    "dateUpdated": "2024-08-05T12:12:27.369Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2019-08722

CVE-2018-20798 (GCVE-0-2018-20798)

Tags

Sightings

Nomenclature