Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:42 a.m.12 views

CVE-2022-26318

On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code, aka FBX-22786. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

9.8CVSS7.5AI score0.78303EPSS
Exploits6References1
GithubExploit
GithubExploit
added 2024/12/05 9:56 a.m.685 views

Exploit for CVE-2022-26318

Watchguard-RCE-POC-CVE-2022-26318 PoC for Watc...

9.8CVSS6.9AI score0.78303EPSS
Exploits6
Rapid7 Blog
Rapid7 Blog
added 2024/04/05 6:59 p.m.48 views

Metasploit Weekly Wrap-Up 04/05/2024

New ESC4 Templates for AD CS Metasploit added capabilities for exploiting the ESC family of flaws in AD CS in Metasploit 6.3. The ESC4 technique in particular has been supported for some time now thanks to the adcscerttemplates module which enables users to read and write certificate template...

7.5CVSS10AI score0.99999EPSS
Exploits52
0day.today
0day.today
added 2024/04/01 12:0 a.m.288 views

WatchGuard XTM Firebox Unauthenticated Remote Command Execution Exploit

This Metasploit module exploits a buffer overflow at the administration interface 8080 or 4117 of WatchGuard Firebox and XTM appliances which is built from a cherrypy python backend sending XML-RPC requests to a C binary called wgagent using pre-authentication endpoint /agent/login. This...

9.8CVSS10AI score0.78303EPSS
Exploits6
Packet Storm
Packet Storm
added 2024/03/29 12:0 a.m.844 views

WatchGuard XTM Firebox Unauthenticated Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'zlib' class MetasploitModule 'WatchGuard XTM Firebox Unauthenticated Remote Command Execution', 'Description' = %q This module exploits a buffer overflow at the...

9.8CVSS7AI score0.78303EPSS
Exploits6
Metasploit
Metasploit
added 2024/03/28 7:50 p.m.220 views

WatchGuard XTM Firebox Unauthenticated Remote Command Execution

This module exploits a buffer overflow at the administration interface 8080 or 4117 of WatchGuard Firebox and XTM appliances which is built from a cherrypy python backend sending XML-RPC requests to a C binary called wgagent using pre-authentication endpoint /agent/login. This vulnerability impac...

9.8CVSS9.8AI score0.78303EPSS
Exploits6
Check Point Advisories
Check Point Advisories
added 2022/04/19 12:0 a.m.30 views

Watchguard Firebox and XTM Remote Code Execution (CVE-2022-26318)

A remote code execution vulnerability exists in Watchguard Firebox and XTM. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.5AI score0.78303EPSS
Exploits6
GithubExploit
GithubExploit
added 2022/03/28 10:53 a.m.382 views

Exploit for CVE-2022-26318

watchguardcve-2022-26318 Watchguard RCE POC CVE-2022-26318...

9.8CVSS9.6AI score0.78303EPSS
Exploits6
Circl
Circl
added 2022/03/04 8:30 p.m.15 views

CVE-2022-26318

creationtimestamp| type| source ---|---|--- 2022-03-04 20:30:20+00:00| seen| https://t.me/cibsecurity/38451 2022-03-27 12:55:05+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/1727 2022-04-15 00:32:33+00:00| published-proof-of-concept| https://t.me/thebugbountyhunter/6169 2022-04-17...

9.8CVSS7.5AI score0.78303EPSS
Exploits6References13
Vulnrichment
Vulnrichment
added 2022/03/04 5:36 p.m.15 views

CVE-2022-26318

On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code, aka FBX-22786. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

9.8AI score0.78303EPSS
Exploits6References1
CVE
CVE
added 2022/03/04 5:36 p.m.1204 views

CVE-2022-26318

This CVE (CVE-2022-26318) affects WatchGuard XTM/Firebox appliances running Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2, enabling unauthenticated remote code execution via the admin interface. Technical details in connected docs show in-the-wild...

9.8CVSS9.6AI score0.78303EPSS
In wildExploits6References2Affected Software1
Rows per page
Query Builder