CVE-2023-27152 Information

Description

DECISO OPNsense 23.1 does not impose rate limits for authentication allowing attackers to perform a brute-force attack to bypass authentication.

Reference

https://www.esecforte.com/cve-2023-27152-opnsense-brute-force/