Security Advisory Detail

OpenSSL Command Injection Vulnerability (CVE-2022-1292)

Advisory ID
WGSA-2022-00012
CVE
CVE-2022-1292
Impact
Medium
Status
Resolved
Product Family
Firebox, WatchGuard Cloud, Dimension, Other Software, Secure Wi-Fi
Published Date
Updated Date
Workaround Available
True
CVSS Score
6.3
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Summary

On May 3 2022, OpenSSL published a security advisory disclosing a command injection vulnerability in the c_rehash script included with the library. Some operating systems automatically execute this script as a part of normal operations which could allow an attacker to execute arbitrary commands with elevated privileges.

WatchGuard is investigating its product line to determine which products or cloud services may be affected by this vulnerability.

Affected
Product Affected Version(s)
Firebox Not impacted
WSM Not impacted
Dimension Mitigated via automatically applied security updates
WatchGuard Cloud Not impacted
DNSWatch Resolved
Cloud Wi-Fi APs Not impacted
Endpoint Clients Not impacted
Resolution
Product Status Fixed Version(s)
Dimension Resolved Dimension automatically installs security updates and has updated OpenSSL to a non-vulnerable version
DNSwatch Resolved DNSWatch engineering deployed a fix to mitigate CVE-2022-1292 in our cloud environment
Advisory Product List
Product Family
Product Branch
Product List
Firebox
XTM 8 Series (2nd Gen)
XTM850, XTM860, XTM870, XTM870-F
Firebox
XTM 1500 and 2520
XTM1520-RP, XTM1525-RP, XTM2520
Firebox
Firebox T (1st Gen)
T10, T10-W, T10-D, T30, T30-W, T50, T50-W
Firebox
Firebox T (3rd Gen)
T20, T20-W, T40, T40-W, T80
Firebox
Firebox M (1st Gen)
M200, M300, M400, M440, M500
Firebox
Firebox M (2nd Gen)
M270, M370, M470, M570, M670
Firebox
Firebox T (2nd Gen)
T15, T15-W, T35, T35-W, T35-R, T55, T55-W, T70
Firebox
Firebox M (3rd Gen)
M290, M390, M590, M690, M4800, M5800
Firebox
XTMv
Small, Medium, Large, Datacenter
Firebox
FireboxCloud
Small, Medium, Large, XLarge
Firebox
FireboxV
Small, Medium, Large, XLarge
WatchGuard Cloud
DNSWatch
DNSWatch
WatchGuard Cloud
WatchGuard Cloud
WatchGuard Cloud
Dimension
Dimension
Dimension
Other Software
WatchGuard System Manager (WSM)
WSM
Secure Wi-Fi
Wi-Fi 6
AP130, AP330, AP430CR, AP432
Secure Wi-Fi
Wi-Fi 4 & 5
AP322, AP420, AP125, AP225W, AP325, AP327X