Fireware@12.1.3 Security Vulnerabilities and Issues — Fireware@12.1.3 CVE List

Lucene search

WatchguardFireware12.1.3

9 matches found

CVE•added 2022/02/24 3:15 p.m.•1182 views

CVE-2022-23176

WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the system with a privileged management session via exposed management access. This vulnerability impacts Fireware OS before 12.7.2_U1, 12.x before 12.1.3_U3, and 12.2.x through 12.5.x before 12.5....

9CVSS8.4AI score0.17683EPSS

CVE•added 2022/03/04 6:15 p.m.•1144 views

CVE-2022-26318

On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code, aka FBX-22786. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.

9.8CVSS9.6AI score0.92762EPSS

CVE•added 2022/02/24 3:15 p.m.•97 views

CVE-2022-25293

A systemd stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8...

8.8CVSS8.9AI score0.03166EPSS

CVE•added 2022/02/24 3:15 p.m.•90 views

CVE-2022-25292

A wgagent stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8...

8.8CVSS8.9AI score0.05763EPSS

CVE•added 2022/02/24 3:15 p.m.•78 views

CVE-2022-25290

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.

6.5CVSS6.4AI score0.00141EPSS

CVE•added 2022/02/24 3:15 p.m.•76 views

CVE-2022-25360

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to upload files to arbitrary locations. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.

8.8CVSS8.6AI score0.00764EPSS

CVE•added 2022/02/24 3:15 p.m.•75 views

CVE-2022-25291

An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to trigger a heap-based buffer overflow and potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2...

8.8CVSS8.9AI score0.01923EPSS

CVE•added 2022/02/24 3:15 p.m.•56 views

CVE-2022-25363

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to modify privileged management user credentials. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.

6.5CVSS6.3AI score0.00181EPSS

CVE•added 2022/06/07 2:15 p.m.•55 views

CVE-2022-25361

WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to delete arbitrary files from a limited set of directories on the system. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.

9.1CVSS9.1AI score0.01092EPSS