CVE-2025-34173
Netgate pfSense CE Snort package v4.1.6_25 Directory Traversal Information Disclosure
CVSS Score
0.0
EPSS Score
0.8%
EPSS Percentile
53th
In pfSense CE /usr/local/www/snort/snort_ip_reputation.php, the value of the iplist parameter is not sanitized of directory traversal-related characters/strings before being used to check if a file exists. While the contents of the file cannot be read, the server reveals whether a file exists, which allows an attacker to enumerate files on the target. The attacker must be authenticated with at least "WebCfg - Services: Snort package" permissions.
| CWE | CWE-22 |
| Vendor | netgate |
| Product | pfsense ce |
| Published | Sep 9, 2025 |
| Last Updated | Jul 14, 2026 |
Stay Ahead of the Next One
Get instant alerts for netgate pfsense ce
Be the first to know when new unknown vulnerabilities affecting netgate pfsense ce are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
Netgate / pfSense CE
4.1.6_25
References
Credits
Alex Williams (Pellera Technologies)