logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2023-39004

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2023-39004

Description:
Insecure permissions in the configuration directory (/conf/) of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allow attackers to access sensitive information (e.g., hashed root password) which could lead to privilege escalation.
Last updated date:
10/10/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
08/15/2023
Reference url to background

https://logicaltrust.net/blog/2023/08/opnsense.html

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy