CVE-2024-5974
Firebox Authenticated Buffer Overflow Vulnerability
Severity Score
7.2
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track*
*SSVC
Descriptions
A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall.
This issue affects Fireware OS: from 11.9.6 through 12.10.3.
Un desbordamiento del búfer en WatchGuard Fireware OS podría permitir que un atacante remoto autenticado con acceso de administración privilegiado ejecute código arbitrario con privilegios del sistema en el firewall. Este problema afecta al sistema operativo Fireware: desde 11.9.6 hasta 12.10.3.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track*
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-06-13 CVE Reserved
- 2024-07-09 CVE Published
- 2024-08-01 CVE Updated
- 2024-08-23 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CAPEC
- CAPEC-242: Code Injection
References (1)
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| WatchGuard Search vendor "WatchGuard" | Fireware OS Search vendor "WatchGuard" for product "Fireware OS" | >= 11.9.6 <= 12.5.12+687697 Search vendor "WatchGuard" for product "Fireware OS" and version " >= 11.9.6 <= 12.5.12+687697" | en |
Affected
| ||||||
| WatchGuard Search vendor "WatchGuard" | Fireware OS Search vendor "WatchGuard" for product "Fireware OS" | >= 12.6.0 <= 12.10.3 Search vendor "WatchGuard" for product "Fireware OS" and version " >= 12.6.0 <= 12.10.3" | en |
Affected
| ||||||