CVE-2023-4809: FreeBSD pf bypass when using IPv6
- Added on 2023-09-09
- Page: https://www.enricobassetti.it/2023/09/cve-2023-4809-freebsd-pf-bypass-when-using-ipv6/
- See on Internet Archive
- #security #cve #red #pf #ipv6 #fragment
A few months ago, as part of our investigations on IPv6 security in the NetSecurityLab @ Sapienza University, we discovered a vulnerability that allows attackers to bypass rules in pf-based IPv6 firewalls in particular conditions. Let’s see some details of this vulnerability.