GCVE - cpe:2.3:o:watchguard:fireware:12.1.3:-:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:watchguard:fireware:12.1.3:-:*:*:*:*:*:*

part: o version: 12.1.3 update: -

Vendor	Watchguard (`ec468727-86da-5bb0-9483-b62749e25478`)
Product	Fireware (`898564d4-b91a-5b47-bcac-96a2c4d78aba`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-25363`	vulnerable	2026-06-03 14:46:37.641091	Details available WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to modify privileged management user credentials. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:56:20.000Z Updated: 2024-08-03T04:36:06.972Z Open on db.gcve.eu Reference links https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25361`	vulnerable	2026-06-03 14:46:37.614625	Details available WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to delete arbitrary files from a limited set of directories on the system. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-06-07T13:26:39.000Z Updated: 2024-08-03T04:36:06.903Z Open on db.gcve.eu Reference links https://watchguard.com https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00004	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25360`	vulnerable	2026-06-03 14:46:37.613840	Details available WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to upload files to arbitrary locations. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:53:14.000Z Updated: 2024-08-03T04:36:06.959Z Open on db.gcve.eu Reference links https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25293`	vulnerable	2026-06-03 14:46:37.489640	Details available A systemd stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:55:47.000Z Updated: 2024-08-03T04:36:06.871Z Open on db.gcve.eu Reference links https://cwe.mitre.org/data/definitions/121.html https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25292`	vulnerable	2026-06-03 14:46:37.489044	Details available A wgagent stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:55:17.000Z Updated: 2024-08-03T04:36:06.768Z Open on db.gcve.eu Reference links https://cwe.mitre.org/data/definitions/121.html https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25291`	vulnerable	2026-06-03 14:46:37.488438	Details available An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to trigger a heap-based buffer overflow and potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:57:04.000Z Updated: 2024-08-03T04:36:06.651Z Open on db.gcve.eu Reference links https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25290`	vulnerable	2026-06-03 14:46:37.482386	Details available WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:56:49.000Z Updated: 2024-08-03T04:36:06.662Z Open on db.gcve.eu Reference links https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-23176`	vulnerable	2026-06-03 14:46:26.635700	Details available WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the system with a privileged management session via exposed management access. This vulnerability impacts Fireware OS before 12.7.2_U1, 12.x before 12.1.3_U3, and 12.2.x through 12.5.x before 12.5.7_U3. Published: 2022-02-24T00:52:48.000Z Updated: 2025-10-21T23:15:45.629Z Open on db.gcve.eu Reference links https://securityportal.watchguard.com https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7/index.html#Fireware/en-US/resolved_issues.html https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_1_3_U7/index.html#Fireware/en-US/resolved_issues.html https://arstechnica.com/information-technology/2022/04/watchguard-failed-to-disclose-critical-flaw-exploited-by-russian-hackers/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.