Primary

Context

WatchGuard Mobile VPN with SSL Local Privilege Escalation Vulnerability

Vulnerability

A local privilege escalation vulnerability exists in WatchGuard Mobile VPN with SSL client for Windows, prior to version 12.10.2. This vulnerability allows a local user to execute arbitrary commands with elevated privileges on the Windows system. It also serves as an additional unmitigated attack path for CVE-2024-4944.

Impact

Exploitation of this vulnerability allows local users to gain elevated privileges, enabling them to execute arbitrary commands with higher rights on the affected Windows system.

Remediation

Users can upgrade to WatchGuard Mobile VPN with SSL for Windows version 12.11.3 to address this vulnerability.

Added: Oct 29, 2025, 5:29 PM

Updated: Oct 29, 2025, 5:29 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WatchGuard Mobile VPN with SSL Local Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating