What is CVE-2023-48123?

CVE-2023-48123 is a vulnerability in N/a. Published 2023-12-06.

Is CVE-2023-48123 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2023-48123

An issue in Netgate pfSense Plus v.23.05.1 and before and pfSense CE v.2.7.0 allows a remote attacker to execute arbitrary code via a crafted request to the packet_capture.php file.

EPSS: 0.682 (98.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

NHPT/CVE-2023-48123
ARPSyndicate/cve-scores
Farzan-Kh/CVE-2023-48123
fkie-cad/nvd-json-data-feeds
nomi-sec/PoC-in-GitHub

References

redmine.pfsense.org/issues/14809
github.com/pfsense/pfsense/commit/f72618c4abb61ea6346938d0c93df9078736b775
docs.netgate.com/downloads/pfSense-SA-23_11.webgui.asc

Frequently asked questions

What is CVE-2023-48123?: CVE-2023-48123 is a vulnerability in N/a. Published 2023-12-06.
Is CVE-2023-48123 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.