Pfsense CE 2.6.0: Auth Bypass, Unauthenticated Password Reset (CVE-2023-29975)
CVE-2023-29975 Published on November 9, 2023

An issue discovered in Pfsense CE version 2.6.0 allows attackers to change the password of any user without verification.

NVD

Products Associated with CVE-2023-29975

Want to know whenever a new CVE is published for pfSense? stack.watch will email you.

pfSense

Exploit Probability

EPSS

0.08%

Percentile

23.96%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Pfsense CE 2.6.0: Auth Bypass, Unauthenticated Password Reset (CVE-2023-29975)CVE-2023-29975 Published on November 9, 2023

Products Associated with CVE-2023-29975

Exploit Probability

Pfsense CE 2.6.0: Auth Bypass, Unauthenticated Password Reset (CVE-2023-29975)
CVE-2023-29975 Published on November 9, 2023