Firebox Unauthenticated Remote Code Execution Vulnerability
Null pointer dereference in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to potentially execute arbitrary code via exposed management access.
WatchGuard has evidence that adversaries are actively exploiting this vulnerability in the wild and urges all Firebox device administrators to update to the protected firmware release as quickly as possible. Additionally, Firebox device administrators should follow recommended best practices and restrict management access to trusted networks only.
Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.
Fireware OS 12.8, 12.7.2_U2, 12.5.9_U2, 12.1.3_U8