Описание
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow an authenticated privileged administrator to execute arbitrary code with root permissions via an exposed management interface.
This vulnerability affects Fireware OS 11.9 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.7 and 2025.1 up to and including 2026.1.1.
Затрагиваемое ПО
Watchguard FirewareWatchguard Firebox t15Watchguard Firebox t35Watchguard Firebox m295Watchguard Firebox m395Watchguard Firebox m495Watchguard Firebox m595Watchguard Firebox m695Watchguard Firebox t115-wWatchguard Firebox t125Watchguard Firebox t125-wWatchguard Firebox t145Watchguard Firebox t145-wWatchguard Firebox t185Watchguard Firebox m270Watchguard Firebox m290Watchguard Firebox m370Watchguard Firebox m390Watchguard Firebox m440Watchguard Firebox m4600Watchguard Firebox m470Watchguard Firebox m4800Watchguard Firebox m5600Watchguard Firebox m570Watchguard Firebox m5800
CVSS
| Балл | 7.2 — высокая |
| Вектор | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
Источники
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2026-00003