CVE-2025-12490HIGH 8.8EPSS p96.9%

CVE-2025-12490CVE-2025-12490

Description

Netgate pfSense CE Suricata Path Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of Netgate pfSense. Authentication is required to exploit this vulnerability. The specific flaw exists within the Suricata package. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to create files in the context of root. Was ZDI-CAN-28085.

Scoring

CVSS 3.08.8 (HIGH)
VectorCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS18.31% probability of exploitation · percentile 96.9% · 2026-06-18T12:00:27Z
Published2025-11-06
Last modified2026-04-15

Underlying weaknesses· 1

CWE-22

References

  1. https://github.com/pfsense/FreeBSD-ports/commit/36b2303dfca35a1183d76f26bcc6ce26d4ea682d
  2. https://www.zerodayinitiative.com/advisories/ZDI-25-979/

1

TypeTargetConfidenceTier
WeaknessImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal')cwe-220%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-69691
CVE
CVE-2025-69690
CVE
CVE-2025-53120
CVE
CVE-2025-12382
CVE
CVE-2025-32820
CVE
CVE-2026-22557
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.