Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/11/17 6:4 a.m.1 views

CVE-2021-4470

TG8 Firewall contains a pre-authentication remote code execution vulnerability in the runphpcmd.php endpoint. The syscmd POST parameter is passed directly to a system command without validation and executed with root privileges. A remote, unauthenticated attacker can supply crafted values to...

9.3CVSS8.9AI score0.00402EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/11/14 10:50 p.m.1 views

CVE-2021-4470 TG8 Firewall Unauthenticated RCE via runphpcmd.php

TG8 Firewall contains a pre-authentication remote code execution vulnerability in the runphpcmd.php endpoint. The syscmd POST parameter is passed directly to a system command without validation and executed with root privileges. A remote, unauthenticated attacker can supply crafted values to...

9.3CVSS8.6AI score0.00402EPSS
Exploits0References3
EUVD
EUVDadded 2025/11/14 10:50 p.m.1 views

EUVD-2021-34721

TG8 Firewall contains a pre-authentication remote code execution vulnerability in the runphpcmd.php endpoint. The syscmd POST parameter is passed directly to a system command without validation and executed with root privileges. A remote, unauthenticated attacker can supply crafted values to...

9.3CVSS8.5AI score0.00402EPSS
Exploits0References4
EUVD
EUVDadded 2025/11/14 10:50 p.m.2 views

EUVD-2021-34722

TG8 Firewall exposes a directory such as /data/ over HTTP without authentication. This directory stores credential files for previously logged-in users. A remote unauthenticated attacker can enumerate and download files within the directory to obtain valid account usernames and passwords, leading...

8.7CVSS6.5AI score0.00285EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/11/14 12:0 a.m.2 views

PT-2025-47021

Name of the Vulnerable Software and Affected Versions TG8 Firewall affected versions not specified Description The software contains a pre-authentication remote code execution issue in the runphpcmd.php endpoint. The syscmd POST parameter is directly passed to a system command without validation...

9.3CVSS8.4AI score0.00402EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2025/11/14 12:0 a.m.3 views

PT-2025-47022

Name of the Vulnerable Software and Affected Versions TG8 Firewall affected versions not specified Description The TG8 Firewall exposes a directory, such as /data/, over HTTP without authentication. This directory contains credential files for previously logged-in users. A remote, unauthenticated...

8.7CVSS6.5AI score0.00285EPSS
Exploits0References6
CNNVD
CNNVDadded 2025/11/14 12:0 a.m.1 views

TG8 Firewall 安全漏洞

TG8 Firewall is a firewall from TG8 Inc. A security vulnerability exists in TG8 Firewall that originates from an unauthenticated HTTP directory exposing credential files, which could lead to information disclosure and unauthorized access...

8.7CVSS6.2AI score0.00285EPSS
Exploits0References4
Rows per page
Query Builder