PFSense Remote Code Execution CVE-2021-41282

[German Muscle]

I know alot here run PFSense so i figured id post this here.

https://www.shielder.it/advisories/pfsense-remote-command-execution/

This has been patched in versions dating 2-14-2022. So Plus version 22.01 and CE 2.6.0

 

[GotNoRice]

I took a gamble and updated from 2.5.2 to 2.6.0 the moment I saw the update available. The upgrade went without a hitch, and now I'm even more glad I did it.

 

[SamirD]

In the history you see "yet-another-bypass" Kudos to them on being persistent to have it fixed. Wonder what would have happened without that push.