Описание
WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.
Ссылки
- Release NotesVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 12.0.0 (включая) до 12.1.3 (исключая)Версия от 12.2.0 (включая) до 12.5.9 (исключая)Версия от 12.7.0 (включая) до 12.7.2 (исключая)
Одно из
cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.1.3:-:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.1.3:u1:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.1.3:u2:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.1.3:u3:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.1.3:u4:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.1.3:u5:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.1.3:u6:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.1.3:u7:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.5.9:-:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.5.9:u1:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.7.2:-:*:*:*:*:*:*
cpe:2.3:o:watchguard:fireware:12.7.2:u1:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00141
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.
EPSS
Процентиль: 34%
0.00141
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
NVD-CWE-Other