CRITICAL🚩 CISA KEV⚡ EXPLOIT🇵🇱 Wersja polska

CVE-2022-26318

CVSS 9.8v3.1pub. 2022-03-04upd. 2025-11-13

On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code, aka FBX-22786. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Watchguard Fireware

    OS
    Watchguard
    12.1.312.5.912.7.212.0.0 – 12.1.3 (bez)12.5 – 12.5.9 (bez)12.7.0 – 12.7.2 (bez)

CISA KEV — detailsi

Vendori
WatchGuard
Producti
Firebox and XTM Appliances
Added to KEVi
March 25, 2022
Remediation deadline (US Federal)i
April 15, 2022(overdue)
Required action (CISA)i

Apply updates per vendor instructions.

CISA descriptioni

On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code.

🔴
IMMEDIATE ACTION
Actively exploited in the wild (CISA KEV). Patch immediately.
CISA DEADLINE: 15 kwietnia 2022
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2025-14733CRITICAL9.3⚠ KEVPL ✓ten sam produkt

RCE bez uwierzytelnienia w WatchGuard Fireware OS – podatność IKEv2 VPN

CVE-2025-9242CRITICAL9.3⚠ KEVPL ✓ten sam produkt

RCE przez Out-of-bounds Write w WatchGuard Fireware OS (IKEv2 VPN)

CVE-2022-31789CRITICAL9.8ten sam produkt

An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trig...

CVE-2022-25361CRITICAL9.1ten sam produkt

WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to delete arbitrary files from ...

CVE-2022-23176HIGH8.8⚠ KEVten sam produkt

WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the syst...