WatchGuard Fireware OS
Moderate fix4 remedies
cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*
Moderate fix4 remedies
- >= 11.11, <= 11.12.4+541730
- >= 12.0, <= 12.11.4
- >= 12.5, <= 12.5.13
- >= 2025.1, <= 2025.1.2
WatchGuard Firebox XPath Injection Vulnerability Allowing Unauthorized Information Retrieval
Vulnerability
Patched
A vulnerability allowing XPath injection has been identified in WatchGuard Fireware OS. This issue may enable a remote, unauthenticated attacker to access sensitive information from the Firebox configuration via an exposed authentication or management web interface. The vulnerability affects Firebox systems with at least one authentication hotspot configured and is present in Fireware OS versions 11.11 through 11.12.4+541730, 12.0 through 12.11.4, 12.5 through 12.5.13, and 2025.1 through 2025.1.2.
Impact
Exploitation of this vulnerability could lead to unauthorized access to sensitive configuration information on the affected Firebox system.
Remediation
Users can upgrade to Fireware OS 2025.1.3, 12.11.5, or 12.5.14 (for T15 & T35 models) to address this vulnerability. For Fireware OS 11.x, the vulnerability is no longer supported as this version has reached its end of life.
Added: Dec 4, 2025, 10:23 PM
Updated: Dec 4, 2025, 10:23 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
2.5exploitability
5.9remediation
7.7relevance
1.3threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.