Arbitrary Command Execution via Directory Traversal in OPNsense Captive Portal Templates

Arbitrary Command Execution via Directory Traversal in OPNsense Captive Portal Templates

CVE-2023-38997 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

A directory traversal vulnerability in the Captive Portal templates of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to execute arbitrary system commands as root via a crafted ZIP archive.

Learn more about our Web Application Penetration Testing UK.