Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-31791

WatchGuard Firebox and XTM appliances allow a local attacker (that has already obtained shell access) to elevate their privileges and execute code with root permissions. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.

Published

2022-09-06T19:15:08.403

Last Modified

2024-11-21T07:05:19.987

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	watchguard	fireware	< 12.1.4	Yes
Operating System	watchguard	fireware	< 12.5.10	Yes
Operating System	watchguard	fireware	12.6.1	Yes
Operating System	watchguard	fireware	12.6.1	Yes
Operating System	watchguard	fireware	12.6.3	Yes
Operating System	watchguard	fireware	12.6.4	Yes
Operating System	watchguard	fireware	12.7.0	Yes
Operating System	watchguard	fireware	12.7.1	Yes
Operating System	watchguard	fireware	12.7.2	Yes
Operating System	watchguard	fireware	12.8.0	Yes

References

https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00018 Vendor Advisory ([email protected])
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00018 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)