CVE-2022-25361

Опубликовано: 07 июн. 2022

Источник: nvd

CVSS3: 9.1

CVSS2: 6.4

EPSS Низкий

Описание

WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to delete arbitrary files from a limited set of directories on the system. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.

Ссылки

https://watchguard.com
Vendor Advisory
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00004
Vendor Advisory
https://watchguard.com
Vendor Advisory
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00004
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*

Версия от 12.0.0 (включая) до 12.1.3 (исключая)

cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*

Версия от 12.2.0 (включая) до 12.5.9 (исключая)

cpe:2.3:o:watchguard:fireware:12.1.3:-:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.1.3:u1:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.1.3:u2:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.1.3:u3:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.1.3:u4:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.1.3:u5:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.1.3:u6:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.1.3:u7:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.5.9:-:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.5.9:u1:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.7.2:-:*:*:*:*:*:*

cpe:2.3:o:watchguard:fireware:12.7.2:u1:*:*:*:*:*:*

Одно из

cpe:2.3:h:watchguard:firebox_m200:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m270:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m290:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m300:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m370:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m390:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m400:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m440:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m470:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m4800:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m500:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m570:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m5800:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m590:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m670:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_m690:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t10:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t10-d:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t10-w:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t15:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t15-w:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t20:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t20-w:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t30:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t30-w:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t35:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t35-r:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t35-w:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t40:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t40-w:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t50:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t50-w:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t55:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t55-w:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t70:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_t80:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_xtm1520-rp:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_xtm1525-rp:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_xtm2520:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_xtm850:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_xtm860:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_xtm870:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:firebox_xtm870-f:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:fireboxcloud:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:fireboxv:-:*:*:*:*:*:*:*

cpe:2.3:h:watchguard:xtmv:-:*:*:*:*:*:*:*

EPSS

Процентиль: 78%

0.01092

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-r9x8-h9ph-cjp4