Headline
CVE-2022-31789: Firebox Unauthenticated Buffer Overflow Vulnerability | WatchGuard Technologies
An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trigger a buffer overflow and potentially execute arbitrary code by sending a malicious request to exposed management ports. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.
Advisory ID
WGSA-2022-00015
Published Date
2022-06-23
Workaround Available
True
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trigger a buffer overflow and potentially execute arbitrary code by sending a malicious request to exposed management ports.
Affected
Fireware OS before 12.8.1, 12.x before 12.1.4, and 12.2.x through 12.5.x before 12.5.10.
Resolution
Fireware OS 12.8.1, 12.5.10 and 12.1.4
Workaround
Follow WatchGuard’s recommended best practices for remote management access and do not expose unrestricted management access to the internet.
Credits
Charles Fol from LEXFO/AMBIONICS
Advisory Product List
Product Family
Product Branch
Product List