CVE-2018-20799

Name of the Vulnerable Software and Affected Versions: pfSense version 2.4.4 1

Description: The issue is related to inconsistent blocking of source IP addresses based on failed HTTPS and SSH authentication. This inconsistency might allow attackers to bypass intended access restrictions, as the behavior does not match the sshguard documentation.

Recommendations: For pfSense version 2.4.4 1, consider temporarily restricting access to the HTTPS authentication endpoint until a patch is available to ensure consistent blocking behavior with SSH authentication.