Public Proof-of-Concept for WatchGuard Vulnerabilities Affecting Firebox SSO Gateway and Client

WatchGuard has released security advisories addressing three vulnerabilities affecting Firebox SSO product lines. The vulnerabilities affect Firebox Authentication Gateway, also known as the Single Sign-On Agent, as well as the Single Sign-On Client on Windows and MacOS. WatchGuard Firebox is product line of physical and virtual firewalls with Single Sign-on capabilities.

• CVE-2024-6592 has a CVSSv3 score of 9.1 and is an incorrect authorisation vulnerability in the protocol communication between the gateway and client and could allow an attacker with network access to forge communication to the affected components, potentially leading to authorisation bypass.
   
• CVE-2024-6593 has a CVSSv3 score of 9.1 and is an incorrect authorisation vulnerability in the authentication gateway on Windows and could allow an attacker with network access to execute restricted management commands, potentially leading to authentication bypass.
   
• CVE-2024-6594 has a CVSSv3 score of 7.5 is an improper handling of exceptional conditions vulnerability in the Single Sign-On Client on Windows which causes the client to crash while handling malformed commands, potentially leading to denial-of-service.