Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-6593

Incorrect Authorization vulnerability in WatchGuard Authentication Gateway (aka Single Sign-On Agent) on Windows allows an attacker with network access to execute restricted management commands. This issue affects Authentication Gateway: through 12.10.2.

Published

2024-09-25T12:15:05.217

Last Modified

2024-10-01T19:37:55.573

Status

Analyzed

Source

5d1c2695-1a31-4499-88ae-e847036fd7e3

Severity

CVSSv3.1: 9.1 (CRITICAL)

Weaknesses

Type: Secondary
CWE-863
Type: Primary
CWE-863

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	watchguard	authentication_gateway	≤ 12.10.2	Yes

References

https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00015 Vendor Advisory (5d1c2695-1a31-4499-88ae-e847036fd7e3)