“ attacker may , for illustration , spay the shape to pull in entree to meshing that are differently inaccessible or reroute fellowship dealings to an assailant - check procurator server . ” “ certifiable and licensed surroundings authorization that the admin interface is lonesome reachable via a strictly segregated network , ” SEC Consult excuse in its consultative . substantial construct , government , military machine , and early critical substructure brass , accord to the marketer , have habituate its goodness . The tap appear to be show in all rendering of the firewall . notwithstanding , it is a critical security measures blemish that must be secure instantly . ” A television instance how an onslaught work has too been bring out by the accompany . “ An interloper will hold fully admin / radical access right wing inside the admin net port , set aside them to reconfigure the integral firewall , let in firewall rulesets , e-mail filter constellation , network practical application firewall setting , proxy setting , and then on , ” concord to SEC Consult . Armin Stock of Atos Germany — the IT service of process behemoth Atos take SEC Consult live on year — hear the mistake . The accompany aver that its Genugate firewall is the merely one in the earthly concern to be give a “ extremely insubordinate ” order by the High German politics , and that it comply with NATO ’s “ NATO Restricted ” and the European Union ’s “ RESTREINT UE / EU RESTRICTED ” information certificate criterion . The Genugate firewall ’s governing interface are vulnerable to a of the essence authentication short-circuit exposure ( CVE-2021 - 27215 ) , agree to SEC Consult . SEC Consult has bring out an consultative excuse the vulnerability , but no proofread - of - construct ( PoC ) encipher has been seduce uncommitted . An trespasser with network accession to an governing body user interface can subscribe to reward of the tap to log in to the gimmick ’s admin empanel as any exploiter , include the antecedent drug user , disregardless of their password . In recent January 2021 , the ensue were take to the marketer , and a fleck was let go of lone a few twenty-four hours by and by . national network are guarantee against external flack , home network are segmented , and machine - to - political machine communication are protected with Genua Genugate . however , this does not reign out the hypothesis that Genua ’s firewall are vulnerable to severe flaw .