CVE-2022-31814

Name of the Vulnerable Software and Affected Versions pfSense pfBlockerNG versions 2.1.4 26 and earlier

Description The issue allows remote attackers to execute arbitrary OS commands as root via shell metacharacters in the HTTP Host header. It is estimated that over 388,000 devices may be affected. A proof-of-concept exploit is available, and there have been reports of this issue being exploited in the wild. The vulnerability can be exploited through the HTTP Host header, allowing attackers to execute arbitrary OS commands.

Recommendations For pfSense pfBlockerNG versions 2.1.4 26 and earlier, consider disabling the vulnerable component until a patch is available. Restrict access to the HTTP Host header to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.