Pfsense
by Netgate
Take action — actively targeted
Pfsense is actively targeted by attackers. A significant proportion of its known vulnerabilities are being exploited.
What to do
- Apply all available updates immediately
- Review your exposure — is this internet-facing?
- Monitor vendor advisories for this product
What Attackers Target
Vulnerabilities with high exploit probability
54.8%
Confirmed actively exploited (CISA)
0.0%
Public exploit code available
0.0%
Based on 31 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2018-4021 | 7.2 | 84.8% | — |
| CVE-2018-4020 | 7.2 | 84.2% | — |
| CVE-2018-4019 | 7.2 | 84.2% | — |
| CVE-2023-42326 | 8.8 | 83.7% | — |
| CVE-2024-46538 | 4.8 | 83.6% | — |
| CVE-2023-27253 | 8.8 | 77.7% | — |
| CVE-2019-12347 | 6.1 | 73.7% | — |
| CVE-2023-48123 | 8.8 | 68.2% | — |
| CVE-2019-16667 | 8.8 | 56.1% | — |
| CVE-2023-42325 | 5.4 | 48.3% | — |
| CVE-2023-42327 | 5.4 | 48.3% | — |
| CVE-2022-29273 | 6.1 | 35.9% | — |
| CVE-2019-16701 | 8.8 | 20.5% | — |
| CVE-2017-1000479 | 8.8 | 19.0% | — |
| CVE-2018-16055 | 8.8 | 12.9% | — |
| CVE-2019-12949 | 6.1 | 12.4% | — |
| CVE-2019-12585 | 9.8 | 11.5% | — |
| CVE-2020-11457 | 5.4 | 6.4% | — |
| CVE-2019-12584 | 6.1 | 4.6% | — |
| CVE-2019-16915 | 9.8 | 2.7% | — |
50
/ 100
high-risk
Active Threat
50/50 · Critical
Exploit Availability
0/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.