The document describes a vulnerability in the 'XG Firewall' software component, which could be exploited by an attacker to execute arbitrary code, create or delete files, and compromise the confidentiality, integrity, and availability of the system. The vulnerability, rated as critical, affects versions prior to 18.0 MR3 and could be exploited remotely by an unauthenticated attacker
Recommendations include updating to the latest version, applying available patches, and monitoring the system for any signs of compromise.https://www.cert.ssi.gouv.fr/pdf/CERTFR-2024-AVI-0423.pdf