PT-2022-17240 · Watchguard · Watchguard Xtm+1

Published

2022-06-07

Updated

2022-06-14

CVE-2022-25361

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Name of the Vulnerable Software and Affected Versions WatchGuard Firebox and XTM appliances versions prior to 12.7.2 U2 WatchGuard Firebox and XTM appliances versions 12.x prior to 12.1.3 U8 WatchGuard Firebox and XTM appliances versions 12.2.x through 12.5.x prior to 12.5.9 U2

Description The issue allows an unauthenticated remote attacker to delete arbitrary files from a limited set of directories on the system.

Recommendations For versions prior to 12.7.2 U2, update to version 12.7.2 U2 or later. For versions 12.x prior to 12.1.3 U8, update to version 12.1.3 U8 or later. For versions 12.2.x through 12.5.x prior to 12.5.9 U2, update to version 12.5.9 U2 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-25361

Affected Products

Watchguard Firebox

Watchguard Xtm

PT-2022-17240 · Watchguard · Watchguard Xtm+1

CVE-2022-25361

Related Identifiers

Affected Products

References · 5