Primary

Context

pfSense CE Snort Package File Enumeration Vulnerability

Vulnerability

Patched

A file enumeration vulnerability has been identified in the Snort package of pfSense CE. The issue arises in the 'snort_ip_reputation.php' file, where the 'iplist' parameter is not properly sanitized to remove directory traversal characters before checking if a file exists. Although the contents of the file cannot be accessed, the server discloses whether a file exists, enabling an attacker to enumerate files on the target system. This vulnerability affects authenticated users with 'WebCfg - Services: Snort package' permissions.

Impact

Exploitation of this vulnerability allows for unauthorized file enumeration on the pfSense CE system.

Remediation

A new package build has been published and is available for pfSense CE 2.8.1 and 2.8.0.

Added: Sep 9, 2025, 8:41 PM

Updated: Sep 9, 2025, 8:41 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

0.0

exploitability

5.5

remediation

7.7

relevance

0.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

0.0

exploitability

5.5

remediation

7.7

relevance

0.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

pfSense CE Snort Package File Enumeration Vulnerability

Vulnerability

Impact

Remediation

Affected Products

pfSense-pkg-snort

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating