Fireware@12.6.1 Security Vulnerabilities and Issues — Fireware@12.6.1 CVE List

Lucene search

WatchguardFireware12.6.1

4 matches found

CVE•added 2022/09/06 7:15 p.m.•126 views

CVE-2022-31791

WatchGuard Firebox and XTM appliances allow a local attacker (that has already obtained shell access) to elevate their privileges and execute code with root permissions. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.

7.8CVSS8.1AI score0.00154EPSS

CVE•added 2022/09/06 6:15 p.m.•71 views

CVE-2022-31790

WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to retrieve sensitive authentication server settings by sending a malicious request to exposed authentication endpoints. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.

7.5CVSS7.5AI score0.00565EPSS

CVE•added 2022/09/06 7:15 p.m.•50 views

CVE-2022-31792

A stored cross-site scripting (XSS) vulnerability exists in the management web interface of WatchGuard Firebox and XTM appliances. A remote attacker can potentially execute arbitrary JavaScript code in the management web interface by sending crafted requests to exposed management ports. This is fix...

5.4CVSS5.2AI score0.00201EPSS

CVE•added 2022/09/06 7:15 p.m.•38 views

CVE-2022-31789

An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trigger a buffer overflow and potentially execute arbitrary code by sending a malicious request to exposed management ports. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.

9.8CVSS9.8AI score0.10321EPSS