Critical severityNVD Advisory· Published Nov 14, 2025· Updated Apr 15, 2026

CVE-2021-4470

Description

TG8 Firewall contains a pre-authentication remote code execution vulnerability in the runphpcmd.php endpoint. The syscmd POST parameter is passed directly to a system command without validation and executed with root privileges. A remote, unauthenticated attacker can supply crafted values to execute arbitrary operating system commands as root, resulting in full device compromise.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

ssd-disclosure.com/ssd-advisory-tg8-firewall-preauth-rce-and-password-disclosure/nvd
web.archive.org/web/20211024224240/http://www.tg8security.com/nvd
www.vulncheck.com/advisories/tg8-firewall-unauthenticated-rce-via-runphpcmd-phpnvd

News mentions

No linked articles in our index yet.

cvss	0.585
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000