WatchGuard Firebox and XTM appliances allow a local attacker (that has already obtained shell access) to elevate their privileges and execute code with root permissions. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Fireware | Watchguard | 12.0.0 (including) | 12.1.4 (excluding) |
| Fireware | Watchguard | 12.2.0 (including) | 12.5.10 (excluding) |
| Fireware | Watchguard | 12.6.1-u1 (including) | 12.6.1-u1 (including) |
| Fireware | Watchguard | 12.6.1-u3 (including) | 12.6.1-u3 (including) |
| Fireware | Watchguard | 12.6.3 (including) | 12.6.3 (including) |
| Fireware | Watchguard | 12.6.4 (including) | 12.6.4 (including) |
| Fireware | Watchguard | 12.7.0-u1 (including) | 12.7.0-u1 (including) |
| Fireware | Watchguard | 12.7.1 (including) | 12.7.1 (including) |
| Fireware | Watchguard | 12.7.2-u2 (including) | 12.7.2-u2 (including) |
| Fireware | Watchguard | 12.8.0-u1 (including) | 12.8.0-u1 (including) |