.. / CVE-2022-31814

Exploit for pfSense pfBlockerNG <=2.1..4_26 - OS Command Injection (CVE-2022-31814)

Description:

pfSense pfBlockerNG through 2.1.4_26 is susceptible to OS command injection via root via shell metacharacters in the HTTP Host header. NOTE: 3.x is unaffected.

Nuclei Template

View the template here CVE-2022-31814.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-31814.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2022-31814
https://github.com/EvergreenCartoons/SenselessViolence
https://docs.netgate.com/pfsense/en/latest/packages/pfblocker.html
https://www.ihteam.net/advisory/pfblockerng-unauth-rce-vulnerability/
http://packetstormsecurity.com/files/171123/pfBlockerNG-2.1.4_26-Remote-Code-Execution.html