CVE-2022-31749: Authenticated arbitrary file read/write in WatchGuard Fireware OS
First published: Mon Jan 27 2025(Updated: )
An argument injection vulnerability in the diagnose and import pac commands in WatchGuard Fireware OS before 12.8.1, 12.1.4, and 12.5.10 allows an authenticated remote attacker with unprivileged credentials to upload or read files to limited, arbitrary locations on WatchGuard Firebox and XTM appliances
Credit: cve@rapid7.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| WatchGuard Fireware OS | <12.8.1<12.1.4<12.5.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-31749?
CVE-2022-31749 is considered a high-severity vulnerability due to its potential for authenticated remote file manipulation.
How do I fix CVE-2022-31749?
To fix CVE-2022-31749, update WatchGuard Fireware OS to versions 12.8.1, 12.1.4, or 12.5.10 or later.
Who is affected by CVE-2022-31749?
CVE-2022-31749 affects users of WatchGuard Fireware OS versions prior to 12.8.1, 12.1.4, and 12.5.10.
What does CVE-2022-31749 allow an attacker to do?
CVE-2022-31749 allows an authenticated remote attacker to upload or read files in limited arbitrary locations on the device.
What systems are impacted by CVE-2022-31749?
The systems impacted by CVE-2022-31749 are those running vulnerable versions of WatchGuard Fireware OS.
- agent/references
- agent/type
- agent/first-publish-date
- agent/title
- agent/weakness
- agent/description
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/severity
- agent/source
- agent/author
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- vendor/watchguard
- canonical/watchguard fireware os