GCVE - cpe:2.3:o:watchguard:fireware:12.7.2:u1:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:watchguard:fireware:12.7.2:u1:*:*:*:*:*:*

part: o version: 12.7.2 update: u1

Vendor	Watchguard (`ec468727-86da-5bb0-9483-b62749e25478`)
Product	Fireware (`898564d4-b91a-5b47-bcac-96a2c4d78aba`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-26318`	vulnerable	2026-06-03 14:46:41.921192	Details available On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code, aka FBX-22786. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-03-04T17:36:37.000Z Updated: 2025-10-21T23:15:44.814Z Open on db.gcve.eu Reference links https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25363`	vulnerable	2026-06-03 14:46:37.641290	Details available WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to modify privileged management user credentials. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:56:20.000Z Updated: 2024-08-03T04:36:06.972Z Open on db.gcve.eu Reference links https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25361`	vulnerable	2026-06-03 14:46:37.614810	Details available WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to delete arbitrary files from a limited set of directories on the system. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-06-07T13:26:39.000Z Updated: 2024-08-03T04:36:06.903Z Open on db.gcve.eu Reference links https://watchguard.com https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00004	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25360`	vulnerable	2026-06-03 14:46:37.614034	Details available WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to upload files to arbitrary locations. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:53:14.000Z Updated: 2024-08-03T04:36:06.959Z Open on db.gcve.eu Reference links https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25293`	vulnerable	2026-06-03 14:46:37.489946	Details available A systemd stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:55:47.000Z Updated: 2024-08-03T04:36:06.871Z Open on db.gcve.eu Reference links https://cwe.mitre.org/data/definitions/121.html https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25292`	vulnerable	2026-06-03 14:46:37.489233	Details available A wgagent stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:55:17.000Z Updated: 2024-08-03T04:36:06.768Z Open on db.gcve.eu Reference links https://cwe.mitre.org/data/definitions/121.html https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25291`	vulnerable	2026-06-03 14:46:37.488631	Details available An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to trigger a heap-based buffer overflow and potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:57:04.000Z Updated: 2024-08-03T04:36:06.651Z Open on db.gcve.eu Reference links https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25290`	vulnerable	2026-06-03 14:46:37.487934	Details available WatchGuard Firebox and XTM appliances allow an authenticated remote attacker with unprivileged credentials to retrieve certificate private keys. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Published: 2022-02-24T04:56:49.000Z Updated: 2024-08-03T04:36:06.662Z Open on db.gcve.eu Reference links https://www.watchguard.com/support/release-notes/fireware/12/en-US/EN_ReleaseNotes_Fireware_12_7_2/index.html#Fireware/en-US/resolved_issues.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.