Lucene search
K

111 matches found

nvd
nvd
added 2022/02/24 3:15 p.m.29 views

CVE-2022-25360

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to upload files to arbitrary locations. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

8.8CVSS0.01294EPSS
Exploits0References1
attackerkb
attackerkb
added 2022/02/24 3:15 p.m.3 views

CVE-2022-25291

An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to trigger a heap-based buffer overflow and potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2U...

8.8CVSS7.8AI score0.01737EPSS
Exploits0References2
nvd
nvd
added 2022/02/24 3:15 p.m.26 views

CVE-2022-25290

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

6.5CVSS0.00688EPSS
Exploits0References1
osv
osv
added 2022/02/24 3:15 p.m.4 views

CVE-2022-25290

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

6.5CVSS5.8AI score0.00688EPSS
Exploits0References1
attackerkb
attackerkb
added 2022/02/24 3:15 p.m.3 views

CVE-2022-25290

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

6.5CVSS6.7AI score0.00688EPSS
Exploits0References2
nvd
nvd
added 2022/02/24 3:15 p.m.27 views

CVE-2022-23176

WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the system with a privileged management session via exposed management access. This vulnerability impacts Fireware OS before 12.7.2U1, 12.x before 12.1.3U3, and 12.2.x through 12.5.x before...

9CVSS0.13318EPSS
Exploits1References6
prion
prion
added 2022/02/24 3:15 p.m.16 views

Code injection

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

4CVSS6.4AI score0.00688EPSS
Exploits0References1Affected Software1
prion
prion
added 2022/02/24 3:15 p.m.14 views

Design/Logic Flaw

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to modify privileged management user credentials. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

4CVSS6.3AI score0.00882EPSS
Exploits0References1Affected Software1
prion
prion
added 2022/02/24 3:15 p.m.15 views

Stack overflow

A systemd stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8...

6.5CVSS8.9AI score0.0203EPSS
Exploits0References2Affected Software1
prion
prion
added 2022/02/24 3:15 p.m.13 views

Command injection

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to upload files to arbitrary locations. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

6.5CVSS8.6AI score0.01294EPSS
Exploits0References1Affected Software1
prion
prion
added 2022/02/24 3:15 p.m.16 views

Integer overflow

An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to trigger a heap-based buffer overflow and potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2U...

6.5CVSS8.9AI score0.01737EPSS
Exploits0References1Affected Software1
prion
prion
added 2022/02/24 3:15 p.m.27 views

Design/Logic Flaw

WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the system with a privileged management session via exposed management access. This vulnerability impacts Fireware OS before 12.7.2U1, 12.x before 12.1.3U3, and 12.2.x through 12.5.x before...

9CVSS8.5AI score0.13318EPSS
Exploits1References5Affected Software1
prion
prion
added 2022/02/24 3:15 p.m.15 views

Stack overflow

A wgagent stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8...

6.5CVSS8.9AI score0.0203EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2022/02/24 4:57 a.m.20 views

CVE-2022-25291

An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to trigger a heap-based buffer overflow and potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2U...

9.2AI score0.01737EPSS
Exploits0References1
cve
cve
added 2022/02/24 4:57 a.m.90 views

CVE-2022-25291

WatchGuard Firebox and XTM appliances are affected by CVE-2022-25291 due to an integer overflow that can trigger a heap-based buffer overflow when processing a firmware upgrade image. Exploitation requires authentication and could lead to arbitrary code execution on vulnerable Fireware OS version...

8.8CVSS8.9AI score0.01737EPSS
Exploits0References1Affected Software1
cve
cve
added 2022/02/24 4:56 a.m.96 views

CVE-2022-25290

CVE-2022-25290 affects WatchGuard Firebox and XTM appliances running Fireware OS. An authenticated remote attacker with unprivileged credentials can retrieve certificate private keys. Affected versions include Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 1...

6.5CVSS6.4AI score0.00688EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2022/02/24 4:56 a.m.32 views

CVE-2022-25290

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

6.6AI score0.00688EPSS
Exploits0References1
cvelist
cvelist
added 2022/02/24 4:56 a.m.15 views

CVE-2022-25363

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to modify privileged management user credentials. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

6.5AI score0.00882EPSS
Exploits0References1
cve
cve
added 2022/02/24 4:56 a.m.77 views

CVE-2022-25363

WatchGuard Firebox and XTM appliances are affected by CVE-2022-25363 where an authenticated remote attacker with unprivileged credentials can modify privileged management user credentials. Affected: Fireware OS versions before 12.7.2_U2; 12.x before 12.1.3_U8; 12.2.x through 12.5.x before 12.5.9_...

6.5CVSS6.3AI score0.00882EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2022/02/24 4:55 a.m.30 views

CVE-2022-25293

A systemd stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8...

9.1AI score0.0203EPSS
Exploits0References2
Rows per page
Query Builder