Watchguard Fireware Os
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Watchguard Fireware Os.
By the Year
In 2026 there have been 4 vulnerabilities in Watchguard Fireware Os. Last year, in 2025 Fireware Os had 15 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Fireware Os in 2026 could surpass last years number.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 4 | 0.00 |
| 2025 | 15 | 0.00 |
It may take a day or so for new Fireware Os vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Watchguard Fireware Os Security Vulnerabilities
WatchGuard FW OS <=12.11.7: FS Integrity Bypass via Malicious Firmware Update
CVE-2026-3344
- March 03, 2026
A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited persistence via a maliciously-crafted firmware update package.This issue affects Fireware OS 12.0 up to and including 12.11.7, 12.5.9 up to and including 12.5.16, and 2025.1 up to and including 2026.1.1.
Expected Behavior Violation
Reflected XSS in WatchGuard Fireware OS 12.7-12.11.7 Web UI
CVE-2026-3343
- March 03, 2026
A reflected cross-site scripting (XSS) vulnerability in the Fireware OS Web UI enabled execution of malicious JavaScript in the context of an authenticated management user's browser when they click on a specially crafted link. This vulnerability affects Fireware OS 12.7 up to and including 12.11.7 and 2025.1 up to and including 2026.1.1.
XSS
WatchGuard Fireware OS OOB Write via Mgmt Interface
CVE-2026-3342
- March 03, 2026
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow an authenticated privileged administrator to execute arbitrary code with root permissions via an exposed management interface. This vulnerability affects Fireware OS 11.9 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.7 and 2025.1 up to and including 2026.1.1.
Memory Corruption
WatchGuard Fireware OS LDAP Injection (12.012.11.6, 12.512.5.15, 2025.12026.0)
CVE-2026-1498
- January 30, 2026
An LDAP Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to retrieve sensitive information from a connected LDAP authentication server through an exposed authentication or management web interface. This vulnerability may also allow a remote attacker to authenticate as an LDAP user with a partial identifier if they additionally have that user's valid passphrase.This issue affects Fireware OS: from 12.0 through 12.11.6, from 12.5 through 12.5.15, from 2025.1 through 2026.0.
LDAP Injection
WatchGuard Fireware OS OOB Write CVE-2025-14733 (2025.1.3)
CVE-2025-14733
- December 19, 2025
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to execute arbitrary code. This vulnerability affects both the Mobile User VPN with IKEv2 and the Branch Office VPN using IKEv2 when configured with a dynamic gateway peer.This vulnerability affects Fireware OS 11.10.2 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.5 and 2025.1 up to and including 2025.1.3.
Memory Corruption
WatchGuard Fireware OS 12.012.11.2 Buffer Overflow in cert request CLI
CVE-2025-1547
- December 04, 2025
A stack-based buffer overflow vulnerability [CWE-121] in WatchGuard Fireware OS's certificate request command could allow an authenticated privileged user to execute arbitrary code via specially crafted CLI commands.This issue affects Fireware OS: from 12.0 through 12.5.12+701324, from 12.6 through 12.11.2.
Stack Overflow
XSS via WatchGuard FW OS IPS Module (12.012.11.2)
CVE-2025-6946
- December 04, 2025
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS allows Stored XSS via the IPS module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects Firebox: from 12.0 through 12.11.2.
XSS
WatchGuard Fireware OS 11-12.5 & 2025.1 XPath Injection in Auth Hotspot
CVE-2025-1545
- December 04, 2025
An XPath Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to retrieve sensitive information from the Firebox configuration through an exposed authentication or management web interface. This vulnerability only affects Firebox systems that have at least one authentication hotspot configured.This issue affects Fireware OS 11.11 up to and including 11.12.4+541730, 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
aka Blind XPath Injection
WatchGuard Fireware OS DoS via IKEv2 Mobile VPN (12.0-12.11.4,2025.1-2025.1.2)
CVE-2025-11838
- December 04, 2025
A memory corruption vulnerability in WatchGuard Fireware OS may allow an unauthenticated attacker to trigger a Denial of Service (DoS) condition in the Mobile User VPN with IKEv2 and the Branch Office VPN using IKEv2 when configured with a dynamic gateway peer. This vulnerability affects Fireware OS 12.6.1 up to and including 12.11.4 and 2025.1 up to and including 2025.1.2.
Release of Invalid Pointer or Reference
WatchGuard Fireware OS 12.8.1-12.11.4 Boot Integrity Check Bypass (CWE-440)
CVE-2025-13940
- December 04, 2025
An Expected Behavior Violation [CWE-440] vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS boot time system integrity check and prevent the Firebox from shutting down in the event of a system integrity check failure. The on-demand system integrity check in the Fireware Web UI will correctly show a failed system integrity check message in the event of a failure.This issue affects Fireware OS: from 12.8.1 through 12.11.4, from 2025.1 through 2025.1.2.
Expected Behavior Violation
Stored XSS in WatchGuard Fireware OS GW Controller (<=12.11.4)
CVE-2025-13939
- December 04, 2025
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (Gateway Wireless Controller module) allows Stored XSS.This issue affects Fireware OS 11.7.2 up to and including 11.12.4+541730, 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
XSS
WatchGuard Fireware OS Stored XSS (Autotask) v12.4-2025.1.2
CVE-2025-13938
- December 04, 2025
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (Autotask Technology Integration module) allows Stored XSS.This issue affects Fireware OS 12.4 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
XSS
XSS in WatchGuard Fireware OS V12.4-12.11.4 (ConnectWise Module)
CVE-2025-13937
- December 04, 2025
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (ConnectWise Technology Integration module) allows Stored XSS.This issue affects Fireware OS 12.4 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
XSS
WatchGuard Fireware OS XSS via Tigerpaw Module (12.42025.1.2)
CVE-2025-13936
- December 04, 2025
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (Tigerpaw Technology Integration module) allows Stored XSS.This issue affects Fireware OS 12.4 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
XSS
OOB Write in WatchGuard FWOS CLI (12.012.11.4, 12.512.5.13, 2025.12025.1.2)
CVE-2025-12196
- December 04, 2025
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via a specially crafted CLI command.This vulnerability affects Fireware OS 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Memory Corruption
WatchGuard Fireware OS 11.0-12.11.4 OOB Write via CLI Commands
CVE-2025-12195
- December 04, 2025
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via specially crafted IPSec configuration CLI commands.This vulnerability affects Fireware OS 11.0 up to and including 11.12.4+541730, 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Memory Corruption
WatchGuard Fireware OS <12.12> OOB Write via Cert CLI (CVE-2025-12026)
CVE-2025-12026
- December 04, 2025
An Out-of-bounds Write vulnerability in WatchGuard Fireware OSs certificate request command could allow an authenticated privileged user to execute arbitrary code via specially crafted CLI commands.This vulnerability affects Fireware OS 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Memory Corruption
OOB Write WatchGuard Fireware OS 11.10.2-12.11.3 Mobile/Branch VPN (IKEv2) RCE
CVE-2025-9242
- September 17, 2025
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to execute arbitrary code. This vulnerability affects both the Mobile User VPN with IKEv2 and the Branch Office VPN using IKEv2 when configured with a dynamic gateway peer.This vulnerability affects Fireware OS 11.10.2 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.3 and 2025.1.
Memory Corruption
WatchGuard Fireware OS Auth Portal HTTP Req Smuggling xXSS (12.0–12.11.2)
CVE-2025-6999
- September 15, 2025
An HTTP Request Smuggling [CWE-444] vulnerability in the Authentication portal of WatchGuard Fireware OS allows a remote attacker to evade request parameter sanitation and perform a reflected self-Cross-Site Scripting (XSS) attack.This issue affects Fireware OS: from 12.0 through 12.11.2.
HTTP Request Smuggling
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Watchguard Fireware Os or by Watchguard? Click the Watch button to subscribe.
