Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2022-25361
HistoryJun 07, 2022 - 2:15 p.m.

CVE-2022-25361

2022-06-0714:15:09
[email protected]
web.nvd.nist.gov
41
3
watchguard
firebox
xtm
appliances
vulnerability
remote attacker
file deletion
fireware os
cve-2022-25361
nvd

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

9.1 High

AI Score

Confidence

High

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.002 Low

EPSS

Percentile

58.7%

JSON

WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to delete arbitrary files from a limited set of directories on the system. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.

Affected configurations

NVD
Node
watchguardfirewareRange12.0.012.1.3
OR
watchguardfirewareRange12.2.012.5.9
OR
watchguardfirewareMatch12.1.3-
OR
watchguardfirewareMatch12.1.3u1
OR
watchguardfirewareMatch12.1.3u2
OR
watchguardfirewareMatch12.1.3u3
OR
watchguardfirewareMatch12.1.3u4
OR
watchguardfirewareMatch12.1.3u5
OR
watchguardfirewareMatch12.1.3u6
OR
watchguardfirewareMatch12.1.3u7
OR
watchguardfirewareMatch12.5.9-
OR
watchguardfirewareMatch12.5.9u1
OR
watchguardfirewareMatch12.7.2-
OR
watchguardfirewareMatch12.7.2u1
AND
watchguardfirebox_m200Match-
OR
watchguardfirebox_m270Match-
OR
watchguardfirebox_m290Match-
OR
watchguardfirebox_m300Match-
OR
watchguardfirebox_m370Match-
OR
watchguardfirebox_m390Match-
OR
watchguardfirebox_m400Match-
OR
watchguardfirebox_m440Match-
OR
watchguardfirebox_m470Match-
OR
watchguardfirebox_m4800Match-
OR
watchguardfirebox_m500Match-
OR
watchguardfirebox_m570Match-
OR
watchguardfirebox_m5800Match-
OR
watchguardfirebox_m590Match-
OR
watchguardfirebox_m670Match-
OR
watchguardfirebox_m690Match-
OR
watchguardfirebox_t10Match-
OR
watchguardfirebox_t10-dMatch-
OR
watchguardfirebox_t10-wMatch-
OR
watchguardfirebox_t15Match-
OR
watchguardfirebox_t15-wMatch-
OR
watchguardfirebox_t20Match-
OR
watchguardfirebox_t20-wMatch-
OR
watchguardfirebox_t30Match-
OR
watchguardfirebox_t30-wMatch-
OR
watchguardfirebox_t35Match-
OR
watchguardfirebox_t35-rMatch-
OR
watchguardfirebox_t35-wMatch-
OR
watchguardfirebox_t40Match-
OR
watchguardfirebox_t40-wMatch-
OR
watchguardfirebox_t50Match-
OR
watchguardfirebox_t50-wMatch-
OR
watchguardfirebox_t55Match-
OR
watchguardfirebox_t55-wMatch-
OR
watchguardfirebox_t70Match-
OR
watchguardfirebox_t80Match-
OR
watchguardfirebox_xtm1520-rpMatch-
OR
watchguardfirebox_xtm1525-rpMatch-
OR
watchguardfirebox_xtm2520Match-
OR
watchguardfirebox_xtm850Match-
OR
watchguardfirebox_xtm860Match-
OR
watchguardfirebox_xtm870Match-
OR
watchguardfirebox_xtm870-fMatch-
OR
watchguardfireboxcloudMatch-
OR
watchguardfireboxvMatch-
OR
watchguardxtmvMatch-

Social References

More

Related

prion 1
nvd 1
cvelist 1
prion
prion
Design/Logic Flaw
2022-06-07 14:15:00
nvd
nvd
CVE-2022-25361
2022-06-07 14:15:09
cvelist
cvelist
CVE-2022-25361
2022-06-07 13:26:39

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

9.1 High

AI Score

Confidence

High

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.002 Low

EPSS

Percentile

58.7%

JSON
Related for CVE-2022-25361
prion1nvd1cvelist1