CVE-2022-31790 | Vulnerability Database | Aqua Security

WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to retrieve sensitive authentication server settings by sending a malicious request to exposed authentication endpoints. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.

Affected Software

Name	Vendor	Start Version	End Version
Fireware	Watchguard	12.0.0 (including)	12.1.4 (excluding)
Fireware	Watchguard	12.2.0 (including)	12.5.10 (excluding)
Fireware	Watchguard	12.6.1-u1 (including)	12.6.1-u1 (including)
Fireware	Watchguard	12.6.1-u3 (including)	12.6.1-u3 (including)
Fireware	Watchguard	12.6.3 (including)	12.6.3 (including)
Fireware	Watchguard	12.6.4 (including)	12.6.4 (including)
Fireware	Watchguard	12.7.0-u1 (including)	12.7.0-u1 (including)
Fireware	Watchguard	12.7.1 (including)	12.7.1 (including)
Fireware	Watchguard	12.7.2-u2 (including)	12.7.2-u2 (including)
Fireware	Watchguard	12.8.0-u1 (including)	12.8.0-u1 (including)

References

https://www.ambionics.io/blog/hacking-watchguard-firewalls
https://www.openwall.com/lists/oss-security/2022/08/30/2
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00017
https://www.ambionics.io/blog/hacking-watchguard-firewalls
https://www.openwall.com/lists/oss-security/2022/08/30/2
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00017

NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-31790
CWE	https://cwe.mitre.org/data/definitions/.html