As far as I know FreeBSD uses acme.sh for Let's Encrypt certificates.It was discovered yesterday there is a remote code execution vulnerability mainly used by HiCA.
https://github.com/acmesh-official/acme.sh/issues/4659
It is recommended to upgrade acme.sh (fixed today) and mark acme.sh vulnerable in VuXML database.
Kind regards Miroslav Lachman
