CVE-2021-4105

Published: Feb 24, 2023Modified: May 18, 2026

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Improper Handling of Parameters vulnerability in BG-TEK COSLAT Firewall allows Remote Code Inclusion. This issue affects COSLAT Firewall: from 5.24.0.R.20180630 before 5.24.0.R.20210727.

Affected (8)

Products: Bg Tek: Coslat Bx5s1d3 Firmware, Coslat Bx5s1d4 Firmware, Coslat Bx5s1d5 Firmware, Coslat Rm1ds1000 Firmware, Coslat Rm2ds2000 Firmware, Coslat Rm2s200 Firmware, Coslat Rm3s300 Firmware, Coslat Rm4s500 Firmware

Bg Tek

8 products

Coslat Bx5s1d3 Firmware

Coslat Bx5s1d4 Firmware

Coslat Bx5s1d5 Firmware

Coslat Rm1ds1000 Firmware

Coslat Rm2ds2000 Firmware

Coslat Rm2s200 Firmware

Coslat Rm3s300 Firmware

Coslat Rm4s500 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Bg Tek Coslat Bx5s1d3 Firmware	From 5.24.0.r.20180630 to 5.24.0.r.20210727

Running on/with	Platform Versions
Bg Tek Coslat Bx5s1d3	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Bg Tek Coslat Bx5s1d4 Firmware	From 5.24.0.r.20180630 to 5.24.0.r.20210727

Running on/with	Platform Versions
Bg Tek Coslat Bx5s1d4	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Bg Tek Coslat Bx5s1d5 Firmware	From 5.24.0.r.20180630 to 5.24.0.r.20210727

Running on/with	Platform Versions
Bg Tek Coslat Bx5s1d5	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Bg Tek Coslat Rm1ds1000 Firmware	From 5.24.0.r.20180630 to 5.24.0.r.20210727

Running on/with	Platform Versions
Bg Tek Coslat Rm1ds1000	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Bg Tek Coslat Rm2ds2000 Firmware	From 5.24.0.r.20180630 to 5.24.0.r.20210727

Running on/with	Platform Versions
Bg Tek Coslat Rm2ds2000	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Bg Tek Coslat Rm2s200 Firmware	From 5.24.0.r.20180630 to 5.24.0.r.20210727

Running on/with	Platform Versions
Bg Tek Coslat Rm2s200	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Bg Tek Coslat Rm3s300 Firmware	From 5.24.0.r.20180630 to 5.24.0.r.20210727

Running on/with	Platform Versions
Bg Tek Coslat Rm3s300	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Bg Tek Coslat Rm4s500 Firmware	From 5.24.0.r.20180630 to 5.24.0.r.20210727

Running on/with	Platform Versions
Bg Tek Coslat Rm4s500	All versions

Related CWEs

CWE-755

Improper Handling of Exceptional Conditions

The product does not handle or incorrectly handles an exceptional condition.

References (5)

http://blog.coslat.com/2021/07/onemli-kritik-guncelleme-2021-07-27.html

Source: iletisim@usom.gov.tr

Vendor Advisory

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0108

Source: iletisim@usom.gov.tr

https://www.usom.gov.tr/bildirim/tr-23-0108

Source: iletisim@usom.gov.tr

Third Party Advisory

http://blog.coslat.com/2021/07/onemli-kritik-guncelleme-2021-07-27.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.usom.gov.tr/bildirim/tr-23-0108

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.