CVE-2023-27100

CRITICAL

Netgate pfSense Plus <v22.05.1 - Auth Bypass

Title source: llm

Description

Improper restriction of excessive authentication attempts in the SSHGuard component of Netgate pfSense Plus software v22.05.1 and pfSense CE software v2.6.0 allows attackers to bypass brute force protection mechanisms via crafted web requests.

Exploits (3)

exploitdb WORKING POC

by FabDotNET · pythonremotehardware

https://www.exploit-db.com/exploits/51352

View Code ZIP pw:eip

nomisec WORKING POC 2 stars

by DarokNET · poc

https://github.com/DarokNET/CVE-2023-27100

View Code ZIP pw:eip

nomisec WORKING POC

by fabdotnet · poc

https://github.com/fabdotnet/CVE-2023-27100

View Code ZIP pw:eip

References (4)

[Various Sources] https://packetstorm.news/files/id/171791

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/171791/pfsenseCE-2.6.0-Protection-Bypass.html

[Vendor Advisory] https://docs.netgate.com/downloads/pfSense-SA-23_05.sshguard.asc

[Issue Tracking, Patch, Vendor Advisory] https://redmine.pfsense.org/issues/13574

Scores

CVSS v3 9.8

EPSS 0.0350

EPSS Percentile 87.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-307

Status published

Products (2)

netgate/pfsense_plus 22.05.1

pfsense/pfsense 2.6.0

Published Mar 22, 2023

Tracked Since Feb 18, 2026