CVE-2022-31791

{"id": "CVE-2022-31791", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2022-09-06T19:15:08.403", "references": [{"url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00018", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00018", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "WatchGuard Firebox and XTM appliances allow a local attacker (that has already obtained shell access) to elevate their privileges and execute code with root permissions. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4."}, {"lang": "es", "value": "Los dispositivos WatchGuard Firebox y XTM permiten a un atacante local (que ya ha obtenido acceso al shell) elevar sus privilegios y ejecutar c\u00f3digo con permisos de root. Esto ha sido corregido en Fireware OS versiones 12.8.1, 12.5.10 y 12.1.4."}], "lastModified": "2024-11-21T07:05:19.987", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50E35898-20FC-4D3E-B059-EDFEEB2E19F3", "versionEndExcluding": "12.1.4", "versionStartIncluding": "12.0.0"}, {"criteria": "cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "58A5359B-EC12-4C13-B9CC-EE1B49DB67AE", "versionEndExcluding": "12.5.10", "versionStartIncluding": "12.2.0"}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.6.1:u1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2EDC1E95-9077-423E-90F4-928068CA6D74"}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.6.1:u3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C557A092-41F2-4325-884C-B4C03E196A56"}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41CE5E56-7E6E-48ED-A619-06BE1DAAABD2"}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.6.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "299FC710-1AA1-4D3F-B902-231114B75B94"}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.7.0:u1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "45C56536-625E-4E5A-B77A-CF33CEEBC91D"}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "002B43DA-5A94-495D-8736-2FC5997155F9"}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.7.2:u2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B189948-8037-4CB1-A859-0CCB5D9576F8"}, {"criteria": "cpe:2.3:o:watchguard:fireware:12.8.0:u1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "350B4BC0-B366-468B-93BF-366CA72EE5EC"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}