EUVD-2026-17818

🗓️ 01 Apr 2026 09:31:26Reported by EUVDType

A regression drops duplicate rules with address range syntax, loading only the first; address[/mask-bits] ranges are unaffected.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2026-4748	1 Apr 202606:18	–	attackerkb
FreeBSD	FreeBSD -- pf silently ignores certain rules	25 Mar 202600:00	–	freebsd
Circl	CVE-2026-4748	27 Mar 202613:50	–	circl
CNNVD	FreeBSD 安全漏洞	1 Apr 202600:00	–	cnnvd
CVE	CVE-2026-4748	1 Apr 202606:18	–	cve
Cvelist	CVE-2026-4748 pf silently ignores certain rules	1 Apr 202606:18	–	cvelist
FreeBSD Advisory	FreeBSD-SA-26:09.pf	26 Mar 202600:00	–	freebsd_advisory
NVD	CVE-2026-4748	1 Apr 202607:16	–	nvd
Packet Storm News	FreeBSD Security Advisory - FreeBSD-SA-26:09.pf	25 Mar 202600:00	–	packetstormnews
Positive Technologies	PT-2026-29476	1 Apr 202600:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "a8fcd075-4f25-373b-84f7-3b7ea802e9d0",
        "vendor": {
          "name": "FreeBSD"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "509ed9ab-eda8-3330-8708-41a323603a83",
        "product": {
          "name": "FreeBSD"
        },
        "product_version": "14.3-RELEASE <p10"
      },
      {
        "id": "c67e0736-d9f6-3486-a54b-76bba3e85ba6",
        "product": {
          "name": "FreeBSD"
        },
        "product_version": "15.0-RELEASE <p5"
      },
      {
        "id": "fb1a1f7d-9370-3d1d-824d-cde8b11849dc",
        "product": {
          "name": "FreeBSD"
        },
        "product_version": "14.4-RELEASE <p1"
      }
    ]
  }
]

Source	Link
security	www.security.freebsd.org/advisories/FreeBSD-SA-26:09.pf.asc
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-4748

01 Apr 2026 09:31Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.17.5

EPSS0.0025

SSVC