RCE in Tg8 Firewall

CVE-2021-4470

TG8 Firewall contains a pre-authentication remote code execution vulnerability in the runphpcmd.php endpoint. The syscmd POST parameter is passed directly to a system command without validation and executed with root privileges. A remote…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.009 (55.8th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References