CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-27201

Endian Firewall Community (aka EFW) 3.3.2 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in a backup comment.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.016

EPSS Ranking 80.9%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

References

https://github.com/MucahitSaratar/endian_firewall_authenticated_rce
https://sourceforge.net/projects/efw/files/Development/EFW-3.3.2/
https://www.endian.com/company/news/endian-community-releases-new-version-332-148/
https://github.com/MucahitSaratar/endian_firewall_authenticated_rce
https://sourceforge.net/projects/efw/files/Development/EFW-3.3.2/
https://www.endian.com/company/news/endian-community-releases-new-version-332-148/

Products affected by CVE-2021-27201

Endian » Firewall Community » Version: 3.3.2

cpe:2.3:a:endian:firewall_community:3.3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-27201

Products

Pricing

Contact Us