Bug #16715: Multiple redis and sqlite vulnerabilities reported in version used for 25.11.1 - pfSense Plus - pfSense bugtracker

Actions

Copy link

Bug #16715

closed

Multiple redis and sqlite vulnerabilities reported in version used for 25.11.1

Added by Kris Phillips 1 day ago. Updated 1 day ago.

Status:

Closed

Priority:

Normal

Assignee:

Christian McDonald

Category:

Operating System

Target version:

26.03

Start date:

Due date:

% Done:

Estimated time:

Release Notes:

Force Exclusion

Affected Plus Version:

25.11.1

Affected Architecture:

Description

The following vulnerabilities were reported in a Nessus security scan of pfSense Plus:

CVE-2025-49844
CVE-2025-7709
CVE-2025-62507
CVE-2025-46817

These CVEs are for redis 8.2.1 and sqlite 3.50.2, which are present in pfSense Plus 25.11.1. Whether they have any actionable needs is unknown, but the package versions in the operating system do match vulnerable versions, based on the CVE data.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Plus

Custom queries

Bug #16715

Multiple redis and sqlite vulnerabilities reported in version used for 25.11.1

Updated by Christian McDonald 1 day ago

Updated by Christian McDonald 1 day ago

Updated by Christian McDonald 1 day ago