A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall.
This issue affects Fireware OS: from 11.9.6 through 12.10.3.
References
| Link | Resource |
|---|---|
| https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00011 | Vendor Advisory |
| https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00011 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
13 Jan 2025, 18:15
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall. This issue affects Fireware OS: from 11.9.6 through 12.10.3. |
22 Aug 2024, 14:26
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:h:watchguard:firebox_m590:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm1525-rp:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t15-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t40-w:-:*:*:*:*:*:*:* cpe:2.3:o:watchguard:fireware:12.5.12:u1:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m400:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t35:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t80:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t10-d:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxt_t45:*:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t10-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t20:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m440:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m500:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:xtmv:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxt_t25:*:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m570:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxcloud:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m690:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m300:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm870-f:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxv:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m5800:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm870:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t35-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m670:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm1520-rp:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m200:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m270:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm850:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t50:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t15:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t70:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxt_nv5:*:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t10:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m390:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m470:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t55:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t55-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t30:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m4800:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t20-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t40:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm2520:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm860:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t50-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t35-r:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m290:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxt_t85:*:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m370:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t30-w:-:*:*:*:*:*:*:* cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:* |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.2 |
| References | () https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00011 - Vendor Advisory | |
| CWE | CWE-120 | |
| First Time |
Watchguard firebox M470
Watchguard firebox T70 Watchguard firebox T15 Watchguard firebox T10-w Watchguard fireware Watchguard firebox T20-w Watchguard firebox Xtm1520-rp Watchguard firebox M570 Watchguard firebox T15-w Watchguard firebox T50 Watchguard Watchguard fireboxv Watchguard firebox M290 Watchguard firebox M5800 Watchguard firebox M270 Watchguard firebox M500 Watchguard firebox T80 Watchguard firebox T10-d Watchguard fireboxt T25 Watchguard firebox Xtm850 Watchguard fireboxt Nv5 Watchguard firebox T10 Watchguard firebox T20 Watchguard firebox M690 Watchguard firebox T40-w Watchguard xtmv Watchguard firebox M400 Watchguard firebox M200 Watchguard firebox M440 Watchguard firebox M590 Watchguard firebox T30-w Watchguard firebox M370 Watchguard firebox Xtm860 Watchguard firebox T40 Watchguard firebox T55 Watchguard firebox T30 Watchguard firebox Xtm2520 Watchguard firebox Xtm870-f Watchguard fireboxcloud Watchguard firebox Xtm870 Watchguard firebox M300 Watchguard firebox M390 Watchguard firebox T55-w Watchguard firebox M4800 Watchguard firebox Xtm1525-rp Watchguard fireboxt T45 Watchguard firebox M670 Watchguard firebox T50-w Watchguard firebox T35-r Watchguard firebox T35-w Watchguard firebox T35 Watchguard fireboxt T85 |
09 Jul 2024, 03:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-07-09 03:15
Updated : 2025-01-13 18:15
NVD link : CVE-2024-5974
Mitre link : CVE-2024-5974
JSON object : View
Products Affected
watchguard
- firebox_t80
- firebox_m270
- firebox_t10-d
- firebox_m400
- firebox_t30-w
- firebox_xtm870-f
- firebox_t55-w
- firebox_m290
- firebox_t35
- fireboxt_t85
- firebox_xtm1520-rp
- firebox_t35-w
- firebox_m500
- firebox_t50
- firebox_m390
- firebox_m670
- firebox_xtm1525-rp
- firebox_m300
- firebox_m590
- firebox_t40-w
- firebox_t35-r
- firebox_xtm860
- fireboxt_nv5
- fireboxv
- firebox_m570
- firebox_t50-w
- firebox_t55
- firebox_t15-w
- firebox_t30
- firebox_t40
- firebox_xtm850
- fireboxt_t45
- xtmv
- firebox_t20
- fireboxcloud
- fireboxt_t25
- firebox_m370
- firebox_xtm870
- firebox_m200
- firebox_m5800
- firebox_t20-w
- firebox_m440
- firebox_t70
- fireware
- firebox_m4800
- firebox_m690
- firebox_t15
- firebox_t10
- firebox_m470
- firebox_t10-w
- firebox_xtm2520
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')