CVE-2021-4105

Improper Handling of Parameters vulnerability in BG-TEK COSLAT Firewall allows Remote Code Inclusion.This issue affects COSLAT Firewall: from 5.24.0.R.20180630 before 5.24.0.R.20210727.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
TR-CERTCNA
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
VendorProductVersion
bg-tekcoslat_bx5s1d3_firmware
5.24.0.r.20180630 ≤
𝑥
< 5.24.0.r.20210727
bg-tekcoslat_bx5s1d4_firmware
5.24.0.r.20180630 ≤
𝑥
< 5.24.0.r.20210727
bg-tekcoslat_bx5s1d5_firmware
5.24.0.r.20180630 ≤
𝑥
< 5.24.0.r.20210727
bg-tekcoslat_rm1ds1000_firmware
5.24.0.r.20180630 ≤
𝑥
< 5.24.0.r.20210727
bg-tekcoslat_rm2ds2000_firmware
5.24.0.r.20180630 ≤
𝑥
< 5.24.0.r.20210727
bg-tekcoslat_rm2s200_firmware
5.24.0.r.20180630 ≤
𝑥
< 5.24.0.r.20210727
bg-tekcoslat_rm3s300_firmware
5.24.0.r.20180630 ≤
𝑥
< 5.24.0.r.20210727
bg-tekcoslat_rm4s500_firmware
5.24.0.r.20180630 ≤
𝑥
< 5.24.0.r.20210727
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://blog.coslat.com/2021/07/onemli-kritik-guncelleme-2021-07-27.html
https://www.usom.gov.tr/bildirim/tr-23-0108
http://blog.coslat.com/2021/07/onemli-kritik-guncelleme-2021-07-27.html
https://www.usom.gov.tr/bildirim/tr-23-0108