WatchGuard Fireware OS Out-of-Bounds Write Vulnerability Allowing Arbitrary Code Execution with Root Privileges

Vulnerability

A vulnerability allowing out-of-bounds write has been identified in WatchGuard Fireware OS. This issue may enable an authenticated privileged administrator to execute arbitrary code with root permissions through an exposed management interface. The vulnerability affects Fireware OS versions 11.9 prior to 11.12.4_Update1, 12.0 prior to 12.11.7, and 2025.1 prior to 2026.1.1.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of code with root privileges on the affected device.

Added: Mar 3, 2026, 2:18 PM

Updated: Mar 3, 2026, 10:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

3.8

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

3.8

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WatchGuard Fireware OS Out-of-Bounds Write Vulnerability Allowing Arbitrary Code Execution with Root Privileges

Vulnerability

Impact

Affected Products

WatchGuard Fireware OS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating