cvedb.io
CVE-2018-20799
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2019-03-01T15:29:00.327 · Last modified 2026-06-17T01:53:29.930

Summary

In pfSense 2.4.4_1, blocking of source IP addresses on the basis of failed HTTPS authentication is inconsistent with blocking of source IP addresses on the basis of failed SSH authentication (the behavior does not match the sshguard documentation), which might make it easier for attackers to bypass intended access restrictions.

Affected products

netgate — pfsense

Does this affect you?

Add your gear to cvedb and we'll alert you only when netgate ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.