CVE-2015-2295

Name of the Vulnerable Software and Affected Versions pfSense versions prior to 2.2.1

Description A cross-site request forgery (CSRF) issue exists, allowing remote attackers to hijack administrator authentication for requests that delete arbitrary files via the deletefile parameter in the system firmware restorefullbackup.php file within the WebGUI.

Recommendations For versions prior to 2.2.1, update to version 2.2.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the system firmware restorefullbackup.php file to minimize the risk of exploitation. Avoid using the deletefile parameter in the affected API endpoint until the issue is resolved.