CVE-2022-25361

Published Jun 7, 2022
Last updated 2 years ago
CVSS critical 9.1
Overview

Description: WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to delete arbitrary files from a limited set of directories on the system. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.
Source: cve@mitre.org
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 9.1
Impact score: 5.2
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Severity: CRITICAL
CVSS 2.0

Type: Primary
Base score: 6.4
Impact score: 4.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:P/A:P
Weaknesses

nvd@nist.gov: NVD-CWE-noinfo
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E7C2E450-C7DC-40F4-928C-2323428E4DF4",
            "versionEndExcluding": "12.1.3",
            "versionStartIncluding": "12.0.0"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE9EB306-8BF2-4904-ACA5-5938844CB0A9",
            "versionEndExcluding": "12.5.9",
            "versionStartIncluding": "12.2.0"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.1.3:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F3E6444-AA30-4F87-AB97-12601CEDF14E"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.1.3:u1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48106213-C927-4232-A95F-4E6962E72BF9"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.1.3:u2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB0676CA-E9BF-4CB8-99D2-7FA0ACC711EA"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.1.3:u3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AE1BB0F7-72F1-4601-A1E2-161FCA8819B8"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.1.3:u4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "583E164A-E308-4666-84AF-E0ADC16427B4"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.1.3:u5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B310FA82-61C6-4D40-A263-789223301513"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.1.3:u6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "49901BE7-00EA-4180-BC45-CBBFEC295A31"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.1.3:u7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E842BF2-3C47-4C9B-8BA1-B448A2835E0A"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.5.9:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C9586510-0B33-45C9-8550-206791E3C0D6"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.5.9:u1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B345B31-2DC2-49C5-8AC1-A4B12A5B679B"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.7.2:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA32519C-7B8B-4270-BBAD-7CAFAD28AA5E"
          },
          {
            "criteria": "cpe:2.3:o:watchguard:fireware:12.7.2:u1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF8ECE0C-9997-42EB-A983-B930EA4D10E4"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "947408A7-EC5A-43A0-A2F0-C51055F29BF0"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m270:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E472917E-D6E1-4C2D-B37D-E76FCC7307CA"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m290:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9A8C7779-4466-4A9E-B191-929E7746DFF7"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7867C903-6DB6-4E58-AD44-07BBB9C45E72"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m370:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6CE9A123-B769-4E56-845E-DC3DA6166C78"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m390:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "180FAE8C-2E73-4C09-AA11-0C82A7715FA3"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7BD5BB5D-12FC-4D49-A2FA-8886077457B8"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m440:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "309DBEF2-1D92-4641-827F-D99758B5FFA3"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m470:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BBFBA966-E052-4350-9544-3B5D484DBB6B"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m4800:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EF1E586D-0E88-447A-95E8-5203EF869ADB"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m500:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "08422D7D-CA99-4303-B783-30F8CDCAC34C"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m570:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "59389EA2-3067-4AF8-AEC5-FE79E269C170"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m5800:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "445FA7CD-D0AE-4176-9AE5-293B918DE654"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m590:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1B4A7366-0304-431E-B3E4-719BA575CEAC"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m670:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E8512B4A-5269-4067-B9C6-475A4E8AD313"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_m690:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "179C6166-87E1-44F8-B727-CDDE40C673D9"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t10:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1D97A123-654D-40B0-A18B-FE4801BF4506"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t10-d:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "983AE311-F2BD-4260-839E-2D906B6E095A"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t10-w:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "28634F62-70D4-49F6-860F-8FE1B85707F6"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t15:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "626220F8-7F0C-4DD8-8001-12EA0A777A0D"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t15-w:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "083919C1-A383-430A-B56C-13C6128266F8"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t20:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9295217E-C1A0-4A69-A0F0-C44814BB376C"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t20-w:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A4832E5E-E4ED-4222-B9A5-060FA6AA22DF"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t30:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9E10A9DF-DD32-4E42-838D-E398B3451FBF"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t30-w:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "29D260C9-BB0C-4546-9E56-0283B9332AC5"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t35:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E561A57F-91A5-4B3C-9F7D-62E9AB5163A7"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t35-r:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0B691D60-C12E-49DA-9917-4513E4A57B55"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t35-w:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7F374AC3-0292-428B-AA39-F60980874160"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t40:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CC853916-8BDC-4F7C-BA53-D6AB490A9444"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t40-w:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4267A4B5-4F48-4104-85E8-3F6B09FD2354"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t50:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0D15B548-CB7C-44B6-A568-7F87652561D3"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t50-w:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "07EB3F3A-E508-42EF-9D11-9BC77C35EA60"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t55:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D3562304-0317-4A3C-B622-D5CE01CC97F9"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t55-w:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "755CD8FA-C341-4C34-8005-A42C32BD85CF"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t70:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "327BA50A-366A-4367-93B8-328EC0136FA7"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_t80:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D92ABD52-20F6-4AB1-801F-9E7B7B1B78A1"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_xtm1520-rp:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3E7C021D-0C50-47A8-B8D6-27BE0FBD025C"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_xtm1525-rp:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5EF67525-E49F-4B2C-823B-8447E8450F27"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_xtm2520:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "ED8D9112-1504-4341-B2F9-9967B5D02790"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_xtm850:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "95BC88C9-324F-4803-97E4-91773827F4C3"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_xtm860:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AADF6164-8A53-4023-B326-C3CA1A4DE0A8"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_xtm870:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "42A6A10F-C0C1-415F-943D-9CFADC35CF73"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:firebox_xtm870-f:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4EF5490C-5BBD-476C-916E-26C5426A6069"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:fireboxcloud:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "158560A0-D694-41AF-A5F8-0F6FB3EFB8FA"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:fireboxv:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4ECAE1D7-9868-4730-B645-44CB1B6FDE96"
          },
          {
            "criteria": "cpe:2.3:h:watchguard:xtmv:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "72807176-5A59-4BFD-B6C0-2738D9FD3AB5"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
