CVE-2020-11650

HIGH

iXsystems FreeNAS and TrueNAS 11.2-11.2-u8 and 11.3-11.3-U1 - Denial of Service via Authentication Message Flood

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-11650. PoCs published by weinull.

AI-analyzed exploit summary This PoC exploits CVE-2020-11650, a DoS vulnerability in FreeNAS by sending a malformed authentication request with an excessively long password via WebSocket. The attack triggers a crash in the authentication process.

Description

An issue was discovered in iXsystems FreeNAS (and TrueNAS) 11.2 before 11.2-u8 and 11.3 before 11.3-U1. It allows a denial of service. The login authentication component has no limits on the length of an authentication message or the rate at which such messages are sent.

Exploits (1)

nomisec WORKING POC 10 stars
by weinull · poc
https://github.com/weinull/CVE-2020-11650

This PoC exploits CVE-2020-11650, a DoS vulnerability in FreeNAS by sending a malformed authentication request with an excessively long password via WebSocket. The attack triggers a crash in the authentication process.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: FreeNAS (version not specified)
No auth needed
Prerequisites: Network access to the FreeNAS WebSocket endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Patch, Third Party Advisory x_refsource_misc
https://jira.ixsystems.com/browse/NAS-104748

Scores

CVSS v3 7.5
EPSS 0.1192
EPSS Percentile 93.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-307
Status published
Products (4)
ixsystems/freenas_firmware 11.2 (12 CPE variants)
ixsystems/freenas_firmware 11.3 (6 CPE variants)
ixsystems/truenas_firmware 11.2 (12 CPE variants)
ixsystems/truenas_firmware 11.3 (6 CPE variants)
Published Apr 08, 2020
Tracked Since Feb 18, 2026