TG8 Firewall

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2021-4470	TG8 Security TG8 Firewall	Cri	0.60	—	0.00		Nov 14, 2025	TG8 Firewall contains a pre-authentication remote code execution vulnerability in the runphpcmd.php endpoint. The syscmd POST parameter is passed directly to a system command without validation and executed with root privileges. A remote, unauthenticated attacker can supply…
CVE-2021-4471	TG8 Security TG8 Firewall	Hig	0.57	—	0.00		Nov 14, 2025	TG8 Firewall exposes a directory such as /data/ over HTTP without authentication. This directory stores credential files for previously logged-in users. A remote unauthenticated attacker can enumerate and download files within the directory to obtain valid account usernames and…

CVE-2021-4470CriNov 14, 2025
TG8 Security
TG8 Firewall
risk 0.60cvss —epss 0.00
TG8 Firewall contains a pre-authentication remote code execution vulnerability in the runphpcmd.php endpoint. The syscmd POST parameter is passed directly to a system command without validation and executed with root privileges. A remote, unauthenticated attacker can supply…
CVE-2021-4471HigNov 14, 2025
TG8 Security
TG8 Firewall
risk 0.57cvss —epss 0.00
TG8 Firewall exposes a directory such as /data/ over HTTP without authentication. This directory stores credential files for previously logged-in users. A remote unauthenticated attacker can enumerate and download files within the directory to obtain valid account usernames and…