Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfBlockerNG vulnerability?

    Scheduled Pinned Locked Moved General pfSense Questions
    7 Posts 4 Posters 561 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      terryzb
      last edited by

      Is this a concern?

      https://cybersecuritynews.com/open-source-firewall-pfsense-vulnerable/

      S O stephenw10S 3 Replies Last reply Reply Quote 0
      • S
        SteveITS Galactic Empire @terryzb
        last edited by

        https://forum.netgate.com/topic/189579/rce-exploit

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote ๐Ÿ‘ helpful posts!

        T O 2 Replies Last reply Reply Quote 0
        • T
          terryzb @SteveITS
          last edited by

          @SteveITS
          Thanks Steve. I'll pay closer attention to the CVE date next time.

          1 Reply Last reply Reply Quote 0
          • O
            oznet @SteveITS
            last edited by oznet

            @SteveITS Just had high cpu usage last night it stopped netflix, rebooted same thing, this morning a red screen logging in about a CSRF token which I stepped thru to get a new tokin, hope I did not screw things up. Also I not running any plugins, just the bare 2100.

            The 2100 right now is offline on my desk not knowing what to do next?

            1 Reply Last reply Reply Quote 0
            • O
              oznet @terryzb
              last edited by

              @terryzb I have a CSRF token issue and high cpu 98% but that article does not say how to deal with this. I took my 2100 offline until someone know how to fix it?

              S 1 Reply Last reply Reply Quote 0
              • S
                SteveITS Galactic Empire @oznet
                last edited by

                @oznet CSRF is unrelated to pfBlocker. If you had a tan open at the login prompt your token will eventually expire.

                Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
                When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
                Upvote ๐Ÿ‘ helpful posts!

                1 Reply Last reply Reply Quote 1
                • stephenw10S
                  stephenw10 Netgate Administrator @terryzb
                  last edited by

                  @terryzb said in pfBlockerNG vulnerability?:

                  Is this a concern?

                  tl:dr: Nope. ๐Ÿ˜‰

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.