Watchguard.AP.Backdoor
Description
This indicates detection of a Security Bypass vulnerability in Watchguard AP.
The vulnerability is due to a default account with an unchangeable password in the application. A remote attacker may be able to exploit this to execute arbitrary code obtain access to the device, via a request.
Affected Products
Watchguard AP 100 with firmware version 1.2.9.14 and prior
Watchguard AP 102 with firmware version 1.2.9.14 and prior
Watchguard AP 200 with firmware version 1.2.9.14 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version, available from the vendor.
https://watchguardsupport.secure.force.com/publicKB?type=KBSecurityIssues&SFDCID=kA62A0000000LIy
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |