CVE-2022-31749

MEDIUM

WatchGuard Fireware OS <12.8.1-12.5.10 - Command Injection

Title source: llm

Description

An argument injection vulnerability in the diagnose and import pac commands in WatchGuard Fireware OS before 12.8.1, 12.1.4, and 12.5.10 allows an authenticated remote attacker with unprivileged credentials to upload or read files to limited, arbitrary locations on WatchGuard Firebox and XTM appliances

Exploits (2)

nomisec WORKING POC 10 stars

by jbaines-r7 · poc

https://github.com/jbaines-r7/hook

View Code ZIP pw:eip

nomisec WORKING POC 1 stars

by iveresk · poc

https://github.com/iveresk/cve-2022-31749

View Code ZIP pw:eip

References (2)

[Vendor Advisory] https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2022-00019

[Third Party Advisory] https://www.rapid7.com/blog/post/2022/06/23/cve-2022-31749-watchguard-authenticated-arbitrary-file-read-write-fixed/

Scores

CVSS v3 6.5

EPSS 0.0055

EPSS Percentile 67.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-88

Status published

Products (4)

WatchGuard/Fireware OS < 12.8.1

WatchGuard/Fireware OS 12.2.x - 12.5.x

WatchGuard/Fireware OS 12.5.10

WatchGuard/Fireware OS 12.x - 12.1.4

Published Jan 28, 2025

Tracked Since Feb 18, 2026