CVE-2022-31791

EPSS 0.17%
Published 06.09.2022 19:15:08
Last modified 21.11.2024 07:05:19
Source cve@mitre.org
Teams watchlist Login
Open Login

WatchGuard Firebox and XTM appliances allow a local attacker (that has already obtained shell access) to elevate their privileges and execute code with root permissions. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.

Affected products Warnungen 0 Metrics 2 CWE 0 References 4

Data is provided by the National Vulnerability Database (NVD)

Watchguard ≫ Fireware Version >= 12.0.0 < 12.1.4

Watchguard ≫ Fireware Version >= 12.2.0 < 12.5.10

Watchguard ≫ Fireware Version12.6.1 Updateu1

Watchguard ≫ Fireware Version12.6.1 Updateu3

Watchguard ≫ Fireware Version12.6.3

Watchguard ≫ Fireware Version12.6.4

Watchguard ≫ Fireware Version12.7.0 Updateu1

Watchguard ≫ Fireware Version12.7.1

Watchguard ≫ Fireware Version12.7.2 Updateu2

Watchguard ≫ Fireware Version12.8.0 Updateu1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.17%	0.392

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00018

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-31791

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-31791

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-31791

EUVD