Security Advisories

Filter Advisories

Impact
Product Family
Status
Reset Filters
Impact Sort descending Advisory ID Title CVE Published Date
Critical WGSA-2024-00015 WatchGuard SSO Agent Telnet Authentication Bypass CVE-2024-6593
Critical WGSA-2024-00007 XZ Utils supply chain compromise (CVE-2024-3094) CVE-2024-3094
Critical WGSA-2022-00015 Firebox Unauthenticated Buffer Overflow Vulnerability CVE-2022-31789
Critical WGSA-2022-00016 Firebox Authenticated Stack Overflow Vulnerability va CLI Interface CVE-2022-25362
Critical WGSA-2023-00008 Heap Buffer Overflow in libwebp WebP Codec CVE-2023-4863
Critical WGSA-2023-00009 Apache Struts Remote Code Execution Vulnerability (CVE-2023-50164) CVE-2023-50164
Critical WGSA-2022-00010 Java Spring Framework RCE aka Spring4Shell (CVE-2022-22965) CVE-2022-22965
Critical WGSA-2022-00004 Firebox Unauthenticated Arbitrary FIle Delete Vulnerability CVE-2022-25361
Critical WGSA-2024-00012 OpenSSH regreSSHion (CVE-2024-6387) CVE-2024-6387
Critical WGSA-2021-00003 Log4j2 Remote Code Execution Vulnerability aka Log4Shell (CVE-2021-44228) CVE-2021-44228
Critical WGSA-2024-00014 WatchGuard Firebox Single Sign-On Agent Protocol Authorization Bypass CVE-2024-6592
Critical WGSA-2022-00002 Firebox Unauthenticated Remote Code Execution Vulnerability CVE-2022-26318
Critical WGSA-2024-00004 Ivanti Connect Secure and Ivanti Policy Secure Gateway Vulnerabilities CVE-2023-46805, CVE-2024-21887, CVE-2024-21888, CVE-2024-21893
High WGSA-2021-00002 MacOS SSL VPN Privilege Escalation Vulnerability
High WGSA-2024-00005 lighttpd denial of service vulnerability (CVE-2022-41556) CVE-2022-41556
High WGSA-2024-00016 WatchGuard Firebox Single Sign-On Client Denial-of-Service CVE-2024-6594
High WGSA-2023-00004 WatchGuard EPDR and AD360 Local Privilege Escalation CVE-2023-26236
High WGSA-2024-00006 MacOS Safari AuthPoint Password Manager Extension Local Code Injection CVE-2024-1417
High WGSA-2024-00017 WatchGuard Endpoint Protection Privilege Escalation in PSANHost Enables Arbitrary File Delete as SYSTEM CVE-2024-8424
High WGSA-2021-00004 Firebox Management Privilege Escallation Vulnerability CVE-2022-23176
High WGSA-2019-00002 Inferring and hijacking VPN-tunneled TCP connections CVE-2019-14899
High WGSA-2023-00006 WatchGuard EPDR and AD360 Anti-Tamper Protection Bypass Vulnerability CVE-2023-26238
High WGSA-2022-00008 Firebox Authenticated Arbitrary File Upload Vulnerability CVE-2022-25360
High WGSA-2024-00008 Diffie-Hellman Key Agreement Protocol Weaknesses CVE-2002-20001 & CVE-2022-40735 CVE-2002-20001, CVE-2022-40735
High WGSA-2022-00005 Firebox Authenticated Heap Overflow Vulnerability via Malicious Firmware Update CVE-2022-25291
High WGSA-2019-00001 TCP SACK PANIC – Kernel Vulnerabilities CVE-2019-11477, CVE-2019-11478, CVE-2019-11479
High WGSA-2024-00009 CVE-2024-3661 Impact of TunnelVision Vulnerability CVE-2024-3661
High WGSA-2022-00006 Firebox Authenticated Stack Overflow Vulnerability via Malicious Firmware Update - A CVE-2022-25292
High WGSA-2024-00010 Mobile VPN with SSL Local Privilege Escalation Vulnerability CVE-2024-4944
High WGSA-2022-00017 Firebox Information Disclosure Vulnerability CVE-2022-31790
High WGSA-2022-00007 Firebox Authenticated Stack Overflow Vulnerability via Malicious Firmware Update - B CVE-2022-25293
High WGSA-2023-00010 FRR Dynamic Routing Denial of Service Vulenrabilities CVE-2023-38802, CVE-2023-41358
High WGSA-2021-00001 Firebox Privilege Escalation Vulnerability
High WGSA-2024-00011 Firebox Authenticated Buffer Overflow Vulnerability CVE-2024-5974
High WGSA-2022-00020 OpenVPN Unauthenticated Access To Control Channel Data (CVE-2020-15078) CVE-2020-15078
High WGSA-2022-00001 Polkit pkexec Local Privilege Escalation Vulnerability (CVE-2021-4034) CVE-2021-4034
High WGSA-2022-00021 OpenSSL CVE-2022-3602 and CVE-2022-3786 CVE-2022-3602, CVE-2022-3786
High WGSA-2024-00002 WatchGuard Endpoint pskmad_64.sys Out of Bounds Write Vulnerability CVE-2023-6331
High WGSA-2022-00011 OpenSSL Certificate Processing DoS Vulnerability (CVE-2022-0778) CVE-2022-0778
High WGSA-2024-00013 Blast-RADIUS CHAP and PAP Authentication Vulnerability CVE-2024-3596 CVE-2024-3596
High WGSA-2021-00005 Firebox WebUI Business Logic Vulnerability
Medium WGSA-2022-00013 Firebox Authenticated Arbitrary File Read Vulnerability
Medium WGSA-2023-00007 WatchGuard EPDR and AD360 Local Protection Management Password Exposure Vulnerability CVE-2023-26239
Medium WGSA-2022-00018 Firebox Local Privilege Escallation Vulnerability
Medium WGSA-2022-00009 Firebox Unauthorized User Password Modification Vulnerability CVE-2022-25363
Medium WGSA-2018-00001 Foreshadow Speculative Execution Attacks CVE-2018-3646, CVE-2018-3620, CVE-2018-3615
Medium WGSA-2022-00014 Firebox WebUI Stored Cross-Site Scripting (XSS) Vulnerability CVE-2022-31792
Medium WGSA-2023-00005 WatchGuard EPDR and AD360 Advanced Protection Bypass Vulnerability via Registry Key CVE-2023-26237
Medium WGSA-2022-00003 Firebox Unauthorized Certificate Private Key Retrieval Vulnerability CVE-2022-25290
Medium WGSA-2022-00019 Firebox Limited Authenticated Arbitrary File Read/Write Vulnerability CVE-2022-31749