In pfSense it is possible to gain administrative access via default credentials.
Vulnerability Insight:
By convention, each time you create a new instance of pfSense, the admin user is being created with default credentials:
Username: admin, Password: pfsense.
Vulnerability Impact:
This issue may be exploited by a remote attacker to gain access to sensitive information.
Solution:
Change the passwords.
CVSS Score:
10.0
CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C