PatchSiren

BG-TEK CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

CRITICAL BG-TEK CVE published 2023-02-24

CVE-2021-4105

CVE-2021-4105 is a critical vulnerability (CVSS 9.8) in BG-TEK COSLAT Firewall products that allows remote code inclusion through improper handling of parameters. The vulnerability affects multiple COSLAT Firewall hardware models running firmware versions from 5.24.0.R.20180630 through 5.24.0.R.20210727. The issue was publicly disclosed on 2023-02-24, though the vendor released a critical security update [truncated]