CVE-2022-23176

🗓️ 24 Feb 2022 00:52:48Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 1232 Views

Vulnerability in WatchGuard Firebox and XTM appliances allows remote privilege escalation via exposed management access

Reporter	Title	Published	Views	Family All 17
ATTACKERKB	CVE-2022-23176	24 Feb 202200:00	–	attackerkb
BDU FSTEC	The vulnerability of Fireware operating systems in network security devices like WatchGuard Firebox and XTM, related to insecure privilege management, allows attackers to escalate their privileges.	25 Apr 202200:00	–	bdu_fstec
Circl	CVE-2022-23176	14 Apr 202217:10	–	circl
CISA KEV Catalog	WatchGuard Firebox and XTM Privilege Escalation Vulnerability	11 Apr 202200:00	–	cisa_kev
CNNVD	Watchguard WatchGuard Firebox 安全漏洞	24 Feb 202200:00	–	cnnvd
Cvelist	CVE-2022-23176	24 Feb 202200:52	–	cvelist
EUVD	EUVD-2022-28267	3 Oct 202520:07	–	euvd
hivepro	Weekly Threat Digest: 4 – 10 April 2022	13 Apr 202206:34	–	hivepro
hivepro	Sandworm Team using a new modular malware Cyclops Blink	7 Apr 202209:23	–	hivepro
NVD	CVE-2022-23176	24 Feb 202215:15	–	nvd

NVD

Node

watchguard firewareRange12.0.0–12.1.3

watchguard firewareRange12.2.0–12.5.7

Source	Link
watchguard	www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html
watchguard	www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7/index.html
arstechnica	www.arstechnica.com/information-technology/2022/04/watchguard-failed-to-disclose-critical-flaw-exploited-by-russian-hackers/
watchguard	www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_1_3_U7/index.html
securityportal	www.securityportal.watchguard.com/
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

17 Jun 2026 04:29Current

8.4High risk

Vulners AI Score8.4

CVSS 3.18.8

CVSS 29

EPSS0.12249

SSVC