CVE-2021-27201

CVE-2021-27201

EPSS 2.6%

Endian Firewall Community (aka EFW) 3.3.2 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in a backup comment.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/MucahitSaratar/endian_firewall_authenticated_rce https://sourceforge.net/projects/efw/files/Development/EFW-3.3.2/https://www.endian.com/company/news/endian-community-releases-new-version-332-148/