Directory Traversal Vulnerability in Pfsense and Pfsense Suricata

Directory Traversal Vulnerability in Pfsense and Pfsense Suricata

CVE-2020-19678 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Directory Traversal vulnerability found in Pfsense v.2.1.3 and Pfsense Suricata v.1.4.6 pkg v.1.0.1 allows a remote attacker to obtain sensitive information via the file parameter to suricata/suricata_logs_browser.php.

Learn more about our Cis Benchmark Audit For Pfsense Firewall.