An interloper with net get at to an judicature user interface can yield reward of the hemipterous insect to log in to the gimmick ’s admin panel as any user , include the rootage user , disregardless of their word . The ship’s company say that its Genugate firewall is the entirely one in the creation to be minded a “ extremely tolerant ” range by the German administration , and that it comply with NATO ’s “ NATO Restricted ” and the European Union ’s “ RESTREINT UE / EU RESTRICTED ” data security measure measure . SEC Consult has discharge an consultatory excuse the exposure , but no validation - of - construct ( PoC ) cipher has been clear uncommitted . “ attacker may , for deterrent example , interpolate the configuration to make approach to network that are differently untouchable or reroute fellowship dealings to an assaulter - hold in proxy server . ” “ certifiable and licensed environment mandate that the admin interface is but approachable via a stringently unintegrated electronic network , ” SEC Consult explicate in its consultative . internal mesh are assure against external snipe , inner network are metameric , and auto - to - car communication theory are protected with Genua Genugate . The Genugate firewall ’s government activity port are vulnerable to a important hallmark ring road vulnerability ( CVE-2021 - 27215 ) , harmonize to SEC Consult . A telecasting illustrate how an attempt shape has as well been give up by the companion . In belatedly January 2021 , the ensue were relegate to the trafficker , and a darn was resign simply a few solar day ulterior . withal , it is a decisive certificate blemish that must be repair straight off . ” “ An trespasser will hold total admin / etymon entree rectify inside the admin net interface , set aside them to reconfigure the total firewall , include firewall rulesets , netmail filter conformation , vane applications programme firewall scene , placeholder place setting , and thence on , ” allot to SEC Consult . pregnant manufacturing , authorities , military machine , and other life-sustaining base organization , harmonise to the seller , have victimised its goodness . Armin Stock of Atos Germany — the IT military service heavyweight Atos gain SEC Consult close year — get word the misidentify . The glitch come out to be nowadays in all rendering of the firewall . yet , this does not dominate out the possibleness that Genua ’s firewall are vulnerable to stern blemish .