CVE-2022-23176 — WatchGuard Firebox and XTM Privilege Escalation Vulnerability
2022-04-11 • CISA Known Exploited Vulnerability
[event] WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the system with a privileged management session via exposed management access.
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | WatchGuard |
| Product | Firebox and XTM |
| CVE ID | CVE-2022-23176 |
| Date Added | 2022-04-11 |
| Due Date | 2022-05-02 |
| Ransomware Campaign | Unknown |
> MITIGATION
Apply updates per vendor instructions.
Due Date: 2022-05-02