Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
WatchGuard Firebox Insecure Deserialization in Fireware Access Portal
Vulnerability Description
An Insecure Deserialization vulnerability in WatchGuard Fireware OS allows an attacker that has obtained write access to the local filesystem through another vulnerability to execute arbitrary code in the context of the portald user.This issue affects Fireware OS: 12.1 through 12.11.8 and 2025.1 through 2026.1.2. Note, this vulnerability does not affect Firebox platforms that do not support the Access Portal feature, including the T-15 and T-35.
CVSS Information
N/A
Vulnerability Type
可信数据的反序列化
Vulnerability Title
WatchGuard Fireware OS 安全漏洞
Vulnerability Description
WatchGuard Fireware OS是美国WatchGuard公司的一个在 Firebox 上运行的软件。 WatchGuard Fireware OS 12.1至12.11.8版本和2025.1至2026.1.2版本存在安全漏洞,该漏洞源于不安全的反序列化,可能导致在portald用户环境下执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A