CVE-2021-4470

Name of the Vulnerable Software and Affected Versions TG8 Firewall (affected versions not specified)

Description The software contains a pre-authentication remote code execution issue in the runphpcmd.php endpoint. The syscmd POST parameter is directly passed to a system command without validation and executed with root privileges. An unauthenticated, remote attacker can provide crafted values to execute arbitrary operating system commands as root, potentially leading to full device compromise.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.