Lucene search
K

308 matches found

NVD
NVD
โ€ขadded 2026/04/01 10:16 p.m.โ€ข8 views

CVE-2026-3987

A path traversal vulnerability in the Fireware OS Web UI on WatchGuard Firebox systems may allow a privileged authenticated remote attacker to execute arbitrary code in the context of an elevated system process.This issue affects Fireware OS 12.6.1 up to and including 12.11.8 and 2025.1 up to and...

8.6CVSS0.00588EPSS
Exploits0References1
Vulnrichment
Vulnrichment
โ€ขadded 2026/04/01 9:32 p.m.โ€ข1 views

CVE-2026-3987 WatchGuard Firebox Arbitrary File Write vis Path Traversal in Fireware Web UI

A path traversal vulnerability in the Fireware OS Web UI on WatchGuard Firebox systems may allow a privileged authenticated remote attacker to execute arbitrary code in the context of an elevated system process.This issue affects Fireware OS 12.6.1 up to and including 12.11.8 and 2025.1 up to and...

8.6CVSS6.2AI score0.00588EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
โ€ขadded 2026/04/01 9:32 p.m.โ€ข6 views

CVE-2026-3987

A path traversal vulnerability in the Fireware OS Web UI on WatchGuard Firebox systems may allow a privileged authenticated remote attacker to execute arbitrary code in the context of an elevated system process.This issue affects Fireware OS 12.6.1 up to and including 12.11.8 and 2025.1 up to and...

8.6CVSS6.2AI score0.00588EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
โ€ขadded 2026/04/01 9:32 p.m.โ€ข21 views

CVE-2026-3987 WatchGuard Firebox Arbitrary File Write vis Path Traversal in Fireware Web UI

A path traversal vulnerability in the Fireware OS Web UI on WatchGuard Firebox systems may allow a privileged authenticated remote attacker to execute arbitrary code in the context of an elevated system process.This issue affects Fireware OS 12.6.1 up to and including 12.11.8 and 2025.1 up to and...

8.6CVSS0.00588EPSS
Exploits0References1
CVE
CVE
โ€ขadded 2026/04/01 9:32 p.m.โ€ข19 views

CVE-2026-3987

CVE-2026-3987 describes a path traversal vulnerability in the Fireware OS Web UI of WatchGuard Firebox systems. A privileged, authenticated remote attacker could trigger arbitrary code execution within an elevated system process. Affected are Fireware OS versions 12.6.1 through 12.11.8 and 2025.1...

8.6CVSS6.2AI score0.00588EPSS
Exploits0References1
Positive Technologies
Positive Technologies
โ€ขadded 2026/04/01 12:0 a.m.โ€ข13 views

PT-2026-29637

A path traversal vulnerability in the Fireware OS Web UI on WatchGuard Firebox systems may allow a privileged authenticated remote attacker to execute arbitrary code in the context of an elevated system process.This issue affects Fireware OS 12.6.1 up to and including 12.11.8 and 2025.1 up to and...

8.6CVSS6.2AI score0.00588EPSS
Exploits0References3
CNNVD
CNNVD
โ€ขadded 2026/04/01 12:0 a.m.โ€ข7 views

WatchGuard Firebox Fireware OS ๅฎ‰ๅ…จๆผๆดž

WatchGuard Firebox Fireware OS is an operating system developed by the American company WatchGuard, designed to provide security protection and traffic control capabilities for firewall devices. Vulnerabilities exist in versions 12.6.1 to 12.11.8, as well as in versions 2025.1 to 2026.1.2 of...

8.6CVSS6.2AI score0.00588EPSS
Exploits0References1
Positive Technologies
Positive Technologies
โ€ขadded 2026/03/30 12:0 a.m.โ€ข6 views

PT-2026-29022

An Insecure Deserialization vulnerability in WatchGuard Fireware OS allows an attacker that has obtained write access to the local filesystem through another vulnerability to execute arbitrary code in the context of the portald user.This issue affects Fireware OS: 12.1 through 12.11.8 and 2025.1...

8.4CVSS6.2AI score0.00286EPSS
Exploits0References2
Packet Storm
Packet Storm
โ€ขadded 2026/03/11 12:0 a.m.โ€ข206 views

๐Ÿ“„ WatchGuard Firebox Default SSH Credentials

This is a python script to detect whether or not WatchGuard Firebox devices allow unauthorized access via default credentials admin:readwrite on port 4118. =============================================================================================================================================...

6AI score0.00043EPSS
Exploits3
CVE
CVE
โ€ขadded 2026/03/03 1:17 p.m.โ€ข26 views

CVE-2026-3343

CVE-2026-3343 is a reflected XSS in Fireware OS Web UI affecting Fireware OS versions 12.7โ€“12.11.7 and 2025.1โ€“2026.1.1. The vulnerability allows execution of malicious JavaScript in the context of an authenticated management userโ€™s browser when they click a specially crafted link. The CVSS 4.0 ba...

6.1CVSS5.9AI score0.00196EPSS
Exploits0References1Affected Software1
CVE
CVE
โ€ขadded 2026/01/30 1:2 p.m.โ€ข33 views

CVE-2026-1498

WatchGuard Fireware OS is affected by CVE-2026-1498 via LDAP Injection. A remote unauthenticated attacker can retrieve information from a connected LDAP authentication server through an exposed authentication or management web interface, and may authenticate as an LDAP user if they have that user...

7CVSS5.9AI score0.0068EPSS
Exploits0References1
RedhatCVE
RedhatCVE
โ€ขadded 2026/01/09 10:55 a.m.โ€ข10 views

CVE-2022-23176

WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the system with a privileged management session via exposed management access. This vulnerability impacts Fireware OS before 12.7.2U1, 12.x before 12.1.3U3, and 12.2.x through 12.5.x before...

9CVSS6.9AI score0.13318EPSS
Exploits1References1
RedhatCVE
RedhatCVE
โ€ขadded 2026/01/09 10:49 a.m.โ€ข7 views

CVE-2022-31791

WatchGuard Firebox and XTM appliances allow a local attacker that has already obtained shell access to elevate their privileges and execute code with root permissions. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4...

7.8CVSS7AI score0.00214EPSS
Exploits0References1
RedhatCVE
RedhatCVE
โ€ขadded 2026/01/09 10:46 a.m.โ€ข8 views

CVE-2022-31789

An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trigger a buffer overflow and potentially execute arbitrary code by sending a malicious request to exposed management ports. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4...

9.8CVSS8.4AI score0.01516EPSS
Exploits0References1
RedhatCVE
RedhatCVE
โ€ขadded 2026/01/09 10:46 a.m.โ€ข9 views

CVE-2022-31792

A stored cross-site scripting XSS vulnerability exists in the management web interface of WatchGuard Firebox and XTM appliances. A remote attacker can potentially execute arbitrary JavaScript code in the management web interface by sending crafted requests to exposed management ports. This is fix...

5.4CVSS5.8AI score0.00502EPSS
Exploits0References1
RedhatCVE
RedhatCVE
โ€ขadded 2026/01/09 10:42 a.m.โ€ข12 views

CVE-2022-26318

On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code, aka FBX-22786. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2...

9.8CVSS7.5AI score0.78303EPSS
Exploits6References1
CISA
CISA
โ€ขadded 2025/12/19 12:0 p.m.โ€ข7 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-14733link is external WatchGuard Firebox Out-of-Bounds Write Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors...

9.8CVSS6.9AI score0.18047EPSS
In wildExploits1References6
CNNVD
CNNVD
โ€ขadded 2025/12/19 12:0 a.m.โ€ข5 views

WatchGuard Fireware OS ๅฎ‰ๅ…จๆผๆดž

WatchGuard Fireware OS is a software from WatchGuard USA that runs on a Firebox. A security vulnerability exists in WatchGuard Fireware OS versions 11.10.2 through 11.12.4Update1, 12.0 through 12.11.5, and 2025.1 through 2025.1.3, which originates from an out-of-bounds write and could lead to the...

9.8CVSS7.3AI score0.18047EPSS
Exploits1References3
Positive Technologies
Positive Technologies
โ€ขadded 2025/12/19 12:0 a.m.โ€ข6 views

PT-2025-52408

Name of the Vulnerable Software and Affected Versions ABB T-MAC Plus version 4.0-24 Firebox affected versions not specified Description ABB T-MAC Plus is affected by improper neutralization of input during web page generation, which leads to cross-site scripting XSS, a condition where malicious...

8CVSS5.6AI score0.00181EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
โ€ขadded 2025/12/19 12:0 a.m.โ€ข4 views

WatchGuard Firebox OS 11.x / 12.x < 12.3.1_Update4 12.4.x < 12.5.15 / 12.6.x < 12.11.6 / 2025.x < 2025.1.4 Out of Bounds Write (CVE-2025-14733)

According to its self-reported version, the instance of WatchGuard Firebox OS running on the remote host is 11.x, 12.x prior to version 12.3.1Update4, 12.4.x prior to 12.5.15, 12.6.x prior to 12.11.6, or 2025.x prior to 2025.1.4. It is, therefore, affected by an out of bounds write vulnerability:...

9.8CVSS6.6AI score0.18047EPSS
Exploits1References2
Rows per page
Query Builder