CVE-2021-27201

moderate-risk
Published 2021-02-15

Endian Firewall Community (aka EFW) 3.3.2 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in a backup comment.

Do I need to act?

~
1.6% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10 High
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Endian

References (6)

Exploit https://github.com/MucahitSaratar/endian_firewall_authenticated_rce
Release Notes https://sourceforge.net/projects/efw/files/Development/EFW-3.3.2/
Release Notes https://www.endian.com/company/news/endian-community-releases-new-version-332-14...
Exploit https://github.com/MucahitSaratar/endian_firewall_authenticated_rce
Release Notes https://sourceforge.net/projects/efw/files/Development/EFW-3.3.2/
Release Notes https://www.endian.com/company/news/endian-community-releases-new-version-332-14...
39
/ 100
moderate-risk
Severity 30/34 · Critical
Exploitability 4/34 · Minimal
Exposure 5/34 · Minimal