Watchguard : Security Vulnerabilities, CVEs, (Overflow)
An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trigger a buffer overflow and potentially execute arbitrary code by sending a malicious request to exposed management ports. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.
Max CVSS
9.8
EPSS Score
0.41%
Published
2022-09-06
Updated
2022-09-10
A systemd stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.
Max CVSS
8.8
EPSS Score
0.41%
Published
2022-02-24
Updated
2023-02-10
A wgagent stack-based buffer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.
Max CVSS
8.8
EPSS Score
0.41%
Published
2022-02-24
Updated
2023-02-03
An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to trigger a heap-based buffer overflow and potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.
Max CVSS
8.8
EPSS Score
0.19%
Published
2022-02-24
Updated
2022-03-04
PSKMAD.sys in Panda Free Antivirus 18.0 allows local users to cause a denial of service (BSoD) via a crafted DeviceIoControl request to \\.\PSMEMDriver.
Max CVSS
5.5
EPSS Score
0.08%
Published
2017-04-30
Updated
2021-09-09
Buffer overflow in WGagent in WatchGuard WSM and Fireware before 11.8 allows remote attackers to execute arbitrary code via a long sessionid value in a cookie.
Max CVSS
9.3
EPSS Score
12.52%
Published
2013-10-19
Updated
2015-07-27
Buffer overflow in HTTP server on the WatchGuard SOHO firewall allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long GET request.
Max CVSS
10.0
EPSS Score
1.90%
Published
2001-02-12
Updated
2017-10-10
7 vulnerabilities found