7.2

CVE-2024-5974

EPSS 5.5%
Published 09.07.2024 03:15:02
Last modified 13.01.2025 18:15:19
Source 5d1c2695-1a31-4499-88ae-e84703
Teams watchlist Login
Open Login

A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall.
This issue affects Fireware OS: from 11.9.6 through 12.10.3.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Watchguard ≫ Fireware Version >= 11.9.4 < 12.5.12

   Watchguard ≫ Firebox M200 Version-
   Watchguard ≫ Firebox M270 Version-
   Watchguard ≫ Firebox M290 Version-
   Watchguard ≫ Firebox M300 Version-
   Watchguard ≫ Firebox M370 Version-
   Watchguard ≫ Firebox M390 Version-
   Watchguard ≫ Firebox M400 Version-
   Watchguard ≫ Firebox M440 Version-
   Watchguard ≫ Firebox M470 Version-
   Watchguard ≫ Firebox M4800 Version-
   Watchguard ≫ Firebox M500 Version-
   Watchguard ≫ Firebox M570 Version-
   Watchguard ≫ Firebox M5800 Version-
   Watchguard ≫ Firebox M590 Version-
   Watchguard ≫ Firebox M670 Version-
   Watchguard ≫ Firebox M690 Version-
   Watchguard ≫ Firebox T10 Version-
   Watchguard ≫ Firebox T10-d Version-
   Watchguard ≫ Firebox T10-w Version-
   Watchguard ≫ Firebox T15 Version-
   Watchguard ≫ Firebox T15-w Version-
   Watchguard ≫ Firebox T20 Version-
   Watchguard ≫ Firebox T20-w Version-
   Watchguard ≫ Firebox T30 Version-
   Watchguard ≫ Firebox T30-w Version-
   Watchguard ≫ Firebox T35 Version-
   Watchguard ≫ Firebox T35-r Version-
   Watchguard ≫ Firebox T35-w Version-
   Watchguard ≫ Firebox T40 Version-
   Watchguard ≫ Firebox T40-w Version-
   Watchguard ≫ Firebox T50 Version-
   Watchguard ≫ Firebox T50-w Version-
   Watchguard ≫ Firebox T55 Version-
   Watchguard ≫ Firebox T55-w Version-
   Watchguard ≫ Firebox T70 Version-
   Watchguard ≫ Firebox T80 Version-
   Watchguard ≫ Firebox Xtm1520-rp Version-
   Watchguard ≫ Firebox Xtm1525-rp Version-
   Watchguard ≫ Firebox Xtm2520 Version-
   Watchguard ≫ Firebox Xtm850 Version-
   Watchguard ≫ Firebox Xtm860 Version-
   Watchguard ≫ Firebox Xtm870 Version-
   Watchguard ≫ Firebox Xtm870-f Version-
   Watchguard ≫ Fireboxcloud Version-
   Watchguard ≫ Fireboxt Nv5
   Watchguard ≫ Fireboxt T25
   Watchguard ≫ Fireboxt T45
   Watchguard ≫ Fireboxt T85
   Watchguard ≫ Fireboxv Version-
   Watchguard ≫ Xtmv Version-

Watchguard ≫ Fireware Version >= 12.6 < 12.10.4

   Watchguard ≫ Firebox M200 Version-
   Watchguard ≫ Firebox M270 Version-
   Watchguard ≫ Firebox M290 Version-
   Watchguard ≫ Firebox M300 Version-
   Watchguard ≫ Firebox M370 Version-
   Watchguard ≫ Firebox M390 Version-
   Watchguard ≫ Firebox M400 Version-
   Watchguard ≫ Firebox M440 Version-
   Watchguard ≫ Firebox M470 Version-
   Watchguard ≫ Firebox M4800 Version-
   Watchguard ≫ Firebox M500 Version-
   Watchguard ≫ Firebox M570 Version-
   Watchguard ≫ Firebox M5800 Version-
   Watchguard ≫ Firebox M590 Version-
   Watchguard ≫ Firebox M670 Version-
   Watchguard ≫ Firebox M690 Version-
   Watchguard ≫ Firebox T10 Version-
   Watchguard ≫ Firebox T10-d Version-
   Watchguard ≫ Firebox T10-w Version-
   Watchguard ≫ Firebox T15 Version-
   Watchguard ≫ Firebox T15-w Version-
   Watchguard ≫ Firebox T20 Version-
   Watchguard ≫ Firebox T20-w Version-
   Watchguard ≫ Firebox T30 Version-
   Watchguard ≫ Firebox T30-w Version-
   Watchguard ≫ Firebox T35 Version-
   Watchguard ≫ Firebox T35-r Version-
   Watchguard ≫ Firebox T35-w Version-
   Watchguard ≫ Firebox T40 Version-
   Watchguard ≫ Firebox T40-w Version-
   Watchguard ≫ Firebox T50 Version-
   Watchguard ≫ Firebox T50-w Version-
   Watchguard ≫ Firebox T55 Version-
   Watchguard ≫ Firebox T55-w Version-
   Watchguard ≫ Firebox T70 Version-
   Watchguard ≫ Firebox T80 Version-
   Watchguard ≫ Firebox Xtm1520-rp Version-
   Watchguard ≫ Firebox Xtm1525-rp Version-
   Watchguard ≫ Firebox Xtm2520 Version-
   Watchguard ≫ Firebox Xtm850 Version-
   Watchguard ≫ Firebox Xtm860 Version-
   Watchguard ≫ Firebox Xtm870 Version-
   Watchguard ≫ Firebox Xtm870-f Version-
   Watchguard ≫ Fireboxcloud Version-
   Watchguard ≫ Fireboxt Nv5
   Watchguard ≫ Fireboxt T25
   Watchguard ≫ Fireboxt T45
   Watchguard ≫ Fireboxt T85
   Watchguard ≫ Fireboxv Version-
   Watchguard ≫ Xtmv Version-

Watchguard ≫ Fireware Version12.5.12 Updateu1

   Watchguard ≫ Firebox M200 Version-
   Watchguard ≫ Firebox M270 Version-
   Watchguard ≫ Firebox M290 Version-
   Watchguard ≫ Firebox M300 Version-
   Watchguard ≫ Firebox M370 Version-
   Watchguard ≫ Firebox M390 Version-
   Watchguard ≫ Firebox M400 Version-
   Watchguard ≫ Firebox M440 Version-
   Watchguard ≫ Firebox M470 Version-
   Watchguard ≫ Firebox M4800 Version-
   Watchguard ≫ Firebox M500 Version-
   Watchguard ≫ Firebox M570 Version-
   Watchguard ≫ Firebox M5800 Version-
   Watchguard ≫ Firebox M590 Version-
   Watchguard ≫ Firebox M670 Version-
   Watchguard ≫ Firebox M690 Version-
   Watchguard ≫ Firebox T10 Version-
   Watchguard ≫ Firebox T10-d Version-
   Watchguard ≫ Firebox T10-w Version-
   Watchguard ≫ Firebox T15 Version-
   Watchguard ≫ Firebox T15-w Version-
   Watchguard ≫ Firebox T20 Version-
   Watchguard ≫ Firebox T20-w Version-
   Watchguard ≫ Firebox T30 Version-
   Watchguard ≫ Firebox T30-w Version-
   Watchguard ≫ Firebox T35 Version-
   Watchguard ≫ Firebox T35-r Version-
   Watchguard ≫ Firebox T35-w Version-
   Watchguard ≫ Firebox T40 Version-
   Watchguard ≫ Firebox T40-w Version-
   Watchguard ≫ Firebox T50 Version-
   Watchguard ≫ Firebox T50-w Version-
   Watchguard ≫ Firebox T55 Version-
   Watchguard ≫ Firebox T55-w Version-
   Watchguard ≫ Firebox T70 Version-
   Watchguard ≫ Firebox T80 Version-
   Watchguard ≫ Firebox Xtm1520-rp Version-
   Watchguard ≫ Firebox Xtm1525-rp Version-
   Watchguard ≫ Firebox Xtm2520 Version-
   Watchguard ≫ Firebox Xtm850 Version-
   Watchguard ≫ Firebox Xtm860 Version-
   Watchguard ≫ Firebox Xtm870 Version-
   Watchguard ≫ Firebox Xtm870-f Version-
   Watchguard ≫ Fireboxcloud Version-
   Watchguard ≫ Fireboxt Nv5
   Watchguard ≫ Fireboxt T25
   Watchguard ≫ Fireboxt T45
   Watchguard ≫ Fireboxt T85
   Watchguard ≫ Fireboxv Version-
   Watchguard ≫ Xtmv Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	5.5%	0.899

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
5d1c2695-1a31-4499-88ae-e847036fd7e3	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00011

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-5974

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-5974

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-5974

EUVD