VulnCheck KEV: CVE-2022-31814

pfSense pfBlockerNG through 2.1.426 allows remote attackers to execute arbitrary OS commands as root via shell metacharacters in the HTTP Host header. NOTE: 3.x is unaffected...

pfSense 操作系统命令注入漏洞

pfSense is a set of network firewalls based on FreeBSD Linux. A security vulnerability exists in pfSense pfBlockerNG versions prior to 2.1.427, which can be exploited by an attacker to execute arbitrary operating system commands as root via the HTTP host header...