Description
A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall. This issue affects Fireware OS: from 11.9.6 through 12.10.3.
CVSS Metrics
- Vector
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
- Attack Vector
- network
- Complexity
- low
- Privileges
- high
- User Action
- none
- Scope
- unchanged
- Confidentiality
- high
- Integrity
- high
- Availability
- high
- Weaknesses
- CWE-120CWE-120
Metadata
- Primary Vendor
- WATCHGUARD
- Published
- 7/9/2024
- Last Modified
- 1/13/2025
- Source
- NIST NVD
- Note: Verify all details with official vendor sources before applying patches.
Affected Products
watchguard : firewarewatchguard : firewarewatchguard : fireware
AI-Powered Remediation
Generate remediation guidance or a C-suite brief for this vulnerability.