CVE-2022-31789 - OpenCVE

An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trigger a buffer overflow and potentially execute arbitrary code by sending a malicious request to exposed management ports. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Watchguard	Fireware

Configuration 1 [-]

OR	cpe:2.3:o:watchguard:fireware::::::::
	cpe:2.3:o:watchguard:fireware::::::::
	cpe:2.3:o:watchguard:fireware:12.6.1:u1::::::
	cpe:2.3:o:watchguard:fireware:12.6.1:u3::::::
	cpe:2.3:o:watchguard:fireware:12.6.3:::::::*
	cpe:2.3:o:watchguard:fireware:12.6.4:::::::*
	cpe:2.3:o:watchguard:fireware:12.7.0:u1::::::
	cpe:2.3:o:watchguard:fireware:12.7.1:::::::*
	cpe:2.3:o:watchguard:fireware:12.7.2:u2::::::
	cpe:2.3:o:watchguard:fireware:12.8.0:u1::::::

No data.

References

Link	Providers
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00015

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-09-06T18:16:40

Updated: 2024-08-03T07:26:01.237Z

Reserved: 2022-05-27T00:00:00

Link: CVE-2022-31789

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2022-09-06T19:15:08.363

Modified: 2022-09-10T03:19:24.457

Link: CVE-2022-31789

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trigger a buffer overflow and potentially execute arbitrary code by sending a malicious request to exposed management ports. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-09-06T18:16:40", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00015"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2022-31789", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trigger a buffer overflow and potentially execute arbitrary code by sending a malicious request to exposed management ports. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00015", "refsource": "MISC", "url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00015"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T07:26:01.237Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00015"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2022-31789", "datePublished": "2022-09-06T18:16:40", "dateReserved": "2022-05-27T00:00:00", "dateUpdated": "2024-08-03T07:26:01.237Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*", "matchCriteriaId": "50E35898-20FC-4D3E-B059-EDFEEB2E19F3", "versionEndExcluding": "12.1.4", "versionStartIncluding": "12.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*", "matchCriteriaId": "58A5359B-EC12-4C13-B9CC-EE1B49DB67AE", "versionEndExcluding": "12.5.10", "versionStartIncluding": "12.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.6.1:u1:*:*:*:*:*:*", "matchCriteriaId": "2EDC1E95-9077-423E-90F4-928068CA6D74", "vulnerable": true}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.6.1:u3:*:*:*:*:*:*", "matchCriteriaId": "C557A092-41F2-4325-884C-B4C03E196A56", "vulnerable": true}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "41CE5E56-7E6E-48ED-A619-06BE1DAAABD2", "vulnerable": true}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.6.4:*:*:*:*:*:*:*", "matchCriteriaId": "299FC710-1AA1-4D3F-B902-231114B75B94", "vulnerable": true}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.7.0:u1:*:*:*:*:*:*", "matchCriteriaId": "45C56536-625E-4E5A-B77A-CF33CEEBC91D", "vulnerable": true}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "002B43DA-5A94-495D-8736-2FC5997155F9", "vulnerable": true}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.7.2:u2:*:*:*:*:*:*", "matchCriteriaId": "4B189948-8037-4CB1-A859-0CCB5D9576F8", "vulnerable": true}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.8.0:u1:*:*:*:*:*:*", "matchCriteriaId": "350B4BC0-B366-468B-93BF-366CA72EE5EC", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trigger a buffer overflow and potentially execute arbitrary code by sending a malicious request to exposed management ports. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4."}, {"lang": "es", "value": "Un desbordamiento de enteros en los dispositivos WatchGuard Firebox y XTM permite a un atacante remoto no autenticado desencadenar un desbordamiento de b\u00fafer y potencialmente ejecutar c\u00f3digo arbitrario enviando una petici\u00f3n maliciosa a los puertos de administraci\u00f3n expuestos. Esto ha sido corregido en Fireware OS versiones 12.8.1, 12.5.10 y 12.1.4.\n"}], "id": "CVE-2022-31789", "lastModified": "2022-09-10T03:19:24.457", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-09-06T19:15:08.363", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00015"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-190"}], "source": "nvd@nist.gov", "type": "Primary"}]}