CVE-2022-23176

🗓️ 24 Feb 2022 00:52:48Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 1219 Views

Vulnerability in WatchGuard Firebox and XTM appliances allows remote privilege escalation via exposed management access

Reporter	Title	Published	Views	Family All 16
ATTACKERKB	CVE-2022-23176	24 Feb 202200:00	–	attackerkb
Circl	CVE-2022-23176	14 Apr 202217:10	–	circl
CISA KEV Catalog	WatchGuard Firebox and XTM Privilege Escalation Vulnerability	11 Apr 202200:00	–	cisa_kev
CNNVD	Watchguard WatchGuard Firebox 安全漏洞	24 Feb 202200:00	–	cnnvd
Cvelist	CVE-2022-23176	24 Feb 202200:52	–	cvelist
EUVD	EUVD-2022-28267	3 Oct 202520:07	–	euvd
Hive Pro Threat Advisories	Weekly Threat Digest: 4 – 10 April 2022	13 Apr 202206:34	–	hivepro
Hive Pro Threat Advisories	Sandworm Team using a new modular malware Cyclops Blink	7 Apr 202209:23	–	hivepro
NVD	CVE-2022-23176	24 Feb 202215:15	–	nvd
OSV	CVE-2022-23176	24 Feb 202215:15	–	osv

NVD

Node

watchguard firewareRange12.0.0–12.1.3

watchguard firewareRange12.2.0–12.5.7

Source	Link
watchguard	www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html
watchguard	www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7/index.html
arstechnica	www.arstechnica.com/information-technology/2022/04/watchguard-failed-to-disclose-critical-flaw-exploited-by-russian-hackers/
watchguard	www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_1_3_U7/index.html
securityportal	www.securityportal.watchguard.com/
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

03 Nov 2025 15:08Current

8.4High risk

Vulners AI Score8.4

CVSS 3.18.8

CVSS 29

EPSS0.10169

SSVC