CVE-2022-31790
WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to retrieve sensitive authentication server settings by sending a malicious request to exposed authentication endpoints. This is fixed in Fireware OS 12.8.1, 12.5.10, and 12.1.4.
| Software | From | Fixed in |
|---|---|---|
| watchguard / fireware | 12.8.0-u1 | 12.8.0-u1.x |
| watchguard / fireware | 12.7.2-u2 | 12.7.2-u2.x |
| watchguard / fireware | 12.7.1 | 12.7.1.x |
| watchguard / fireware | 12.7.0-u1 | 12.7.0-u1.x |
| watchguard / fireware | 12.6.3 | 12.6.3.x |
| watchguard / fireware | 12.6.4 | 12.6.4.x |
| watchguard / fireware | 12.6.1-u3 | 12.6.1-u3.x |
| watchguard / fireware | 12.6.1-u1 | 12.6.1-u1.x |
| watchguard / fireware | 12.2.0 | 12.5.10 |
| watchguard / fireware | 12.0.0 | 12.1.4 |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime