Watchguard

Fireware

46 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-26318

Warnung
  • EPSS 92.23%
  • Veröffentlicht 04.03.2022 18:15:08
  • Zuletzt bearbeitet 13.11.2025 15:06:59

On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code, aka FBX-22786. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.

8.8

CVE-2022-25293

  • EPSS 5.95%
  • Veröffentlicht 24.02.2022 15:15:31
  • Zuletzt bearbeitet 21.11.2024 06:51:56

A systemd stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fi...

8.8

CVE-2022-25291

  • EPSS 1.92%
  • Veröffentlicht 24.02.2022 15:15:31
  • Zuletzt bearbeitet 21.11.2024 06:51:56

An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to trigger a heap-based buffer overflow and potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This v...

8.8

CVE-2022-25292

  • EPSS 4.13%
  • Veröffentlicht 24.02.2022 15:15:31
  • Zuletzt bearbeitet 21.11.2024 06:51:56

A wgagent stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fi...

8.8

CVE-2022-25360

  • EPSS 0.76%
  • Veröffentlicht 24.02.2022 15:15:31
  • Zuletzt bearbeitet 21.11.2024 06:52:04

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to upload files to arbitrary locations. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5...

6.5

CVE-2022-25363

  • EPSS 0.18%
  • Veröffentlicht 24.02.2022 15:15:31
  • Zuletzt bearbeitet 21.11.2024 06:52:04

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to modify privileged management user credentials. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x th...

6.5

CVE-2022-25290

  • EPSS 0.14%
  • Veröffentlicht 24.02.2022 15:15:30
  • Zuletzt bearbeitet 21.11.2024 06:51:56

WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x...

9

CVE-2022-23176

Warnung
  • EPSS 9.57%
  • Veröffentlicht 24.02.2022 15:15:28
  • Zuletzt bearbeitet 03.11.2025 15:08:21

WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the system with a privileged management session via exposed management access. This vulnerability impacts Fireware OS before 12.7.2_U1, 12.x before ...

6.1

CVE-2016-6154

Exploit
  • EPSS 0.21%
  • Veröffentlicht 23.08.2019 22:15:11
  • Zuletzt bearbeitet 21.11.2024 02:55:33

The authentication applet in Watchguard Fireware 11.11 Operating System has reflected XSS (this can also cause an open redirect).

7.8

CVE-2017-14616

Exploit
  • EPSS 0.83%
  • Veröffentlicht 20.09.2017 20:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An FBX-5312 issue was discovered in WatchGuard Fireware before 12.0. If a login attempt is made in the XML-RPC interface with an XML message containing an empty member element, the wgagent crashes, logging out any user with a session opened in the UI...