Vulnerability Description
A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall. This issue affects Fireware OS: from 11.9.6 through 12.10.3.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Watchguard | Fireware | >= 11.9.4, < 12.5.12 |
| Watchguard | Firebox M200 | - |
| Watchguard | Firebox M270 | - |
| Watchguard | Firebox M290 | - |
| Watchguard | Firebox M300 | - |
| Watchguard | Firebox M370 | - |
| Watchguard | Firebox M390 | - |
| Watchguard | Firebox M400 | - |
| Watchguard | Firebox M440 | - |
| Watchguard | Firebox M470 | - |
| Watchguard | Firebox M4800 | - |
| Watchguard | Firebox M500 | - |
| Watchguard | Firebox M570 | - |
| Watchguard | Firebox M5800 | - |
| Watchguard | Firebox M590 | - |
| Watchguard | Firebox M670 | - |
| Watchguard | Firebox M690 | - |
| Watchguard | Firebox T10 | - |
| Watchguard | Firebox T10-D | - |
| Watchguard | Firebox T10-W | - |
Related Weaknesses (CWE)
References
- https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00011Vendor Advisory
- https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00011Vendor Advisory
FAQ
What is CVE-2024-5974?
CVE-2024-5974 is a vulnerability with a CVSS score of 7.2 (HIGH). A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall. This is...
How severe is CVE-2024-5974?
CVE-2024-5974 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-5974?
Check the references section above for vendor advisories and patch information. Affected products include: Watchguard Fireware, Watchguard Firebox M200, Watchguard Firebox M270, Watchguard Firebox M290, Watchguard Firebox M300.