A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall.
This issue affects Fireware OS: from 11.9.6 through 12.10.3.
References
| Link | Resource |
|---|---|
| https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00011 | Vendor Advisory |
| https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00011 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
21 Nov 2024, 09:48
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00011 - Vendor Advisory |
22 Aug 2024, 14:26
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Watchguard firebox T40
Watchguard firebox M670 Watchguard firebox T35 Watchguard firebox T55-w Watchguard firebox M370 Watchguard firebox M5800 Watchguard firebox T10 Watchguard firebox M570 Watchguard firebox Xtm870 Watchguard firebox M390 Watchguard firebox Xtm870-f Watchguard firebox M500 Watchguard fireboxt T25 Watchguard fireboxt T45 Watchguard firebox T40-w Watchguard fireboxcloud Watchguard firebox T50 Watchguard firebox Xtm2520 Watchguard firebox M290 Watchguard firebox T80 Watchguard firebox M400 Watchguard xtmv Watchguard firebox M4800 Watchguard firebox T10-d Watchguard firebox T50-w Watchguard firebox Xtm1520-rp Watchguard fireboxt T85 Watchguard firebox T70 Watchguard fireboxt Nv5 Watchguard firebox T30 Watchguard firebox M300 Watchguard firebox M690 Watchguard firebox T35-w Watchguard firebox Xtm1525-rp Watchguard firebox M470 Watchguard firebox T10-w Watchguard firebox M590 Watchguard firebox M270 Watchguard firebox T15 Watchguard firebox T55 Watchguard firebox M440 Watchguard firebox T30-w Watchguard Watchguard firebox T15-w Watchguard fireware Watchguard fireboxv Watchguard firebox Xtm860 Watchguard firebox Xtm850 Watchguard firebox M200 Watchguard firebox T20 Watchguard firebox T35-r Watchguard firebox T20-w |
|
| References | () https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00011 - Vendor Advisory | |
| CPE | cpe:2.3:h:watchguard:firebox_m4800:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t15:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t10-w:-:*:*:*:*:*:*:* cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxt_t85:*:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t30-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxcloud:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t20-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm2520:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m200:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m500:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t55:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m290:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t35-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t35-r:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m270:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm870-f:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m590:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m470:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m690:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:xtmv:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t15-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m400:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m570:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t35:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t40-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t50:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t80:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t40:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m390:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm870:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxt_t25:*:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxv:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t50-w:-:*:*:*:*:*:*:* cpe:2.3:o:watchguard:fireware:12.5.12:u1:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m670:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t30:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm1520-rp:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm1525-rp:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t10-d:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t55-w:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxt_nv5:*:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t70:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m370:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t10:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm850:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m300:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m5800:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_m440:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_xtm860:-:*:*:*:*:*:*:* cpe:2.3:h:watchguard:fireboxt_t45:*:*:*:*:*:*:*:* cpe:2.3:h:watchguard:firebox_t20:-:*:*:*:*:*:*:* |
09 Jul 2024, 18:19
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
09 Jul 2024, 03:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-07-09 03:15
Updated : 2024-11-21 09:48
NVD link : CVE-2024-5974
Mitre link : CVE-2024-5974
CVE.ORG link : CVE-2024-5974
JSON object : View
Products Affected
watchguard
- firebox_m200
- firebox_m390
- fireboxcloud
- firebox_t20
- firebox_xtm870
- firebox_t15-w
- firebox_t50
- fireware
- firebox_m400
- firebox_t55-w
- fireboxv
- firebox_t10
- firebox_xtm1525-rp
- firebox_xtm870-f
- firebox_m300
- firebox_t50-w
- firebox_m290
- firebox_t20-w
- xtmv
- firebox_m500
- firebox_m4800
- firebox_t35-r
- firebox_t40-w
- firebox_t80
- fireboxt_t45
- firebox_m470
- fireboxt_nv5
- firebox_xtm850
- firebox_t70
- firebox_m590
- firebox_t10-d
- firebox_t35-w
- firebox_m440
- firebox_m670
- firebox_t35
- firebox_t55
- firebox_t15
- fireboxt_t85
- firebox_m570
- firebox_m690
- firebox_xtm860
- fireboxt_t25
- firebox_m370
- firebox_m5800
- firebox_t30
- firebox_t10-w
- firebox_xtm1520-rp
- firebox_xtm2520
- firebox_t30-w
- firebox_t40
- firebox_m270
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')