Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Fireware OS — Vulnerabilities & Security Advisories 31

All 31 CVE vulnerabilities found in Fireware OS, with AI-generated Chinese analysis, references, and POCs.

This page documents known security vulnerabilities associated with Fireware OS, covering common weakness types and associated tags within the firewall ecosystem. It aggregates a comprehensive collection of vulnerability reports, including buffer overflows, injection flaws, and configuration errors, spanning from the initial release of the operating system through recent updates. By examining this consolidated data, users can effectively track a vendor's advisories to stay informed about critical patches and security updates. Additionally, the resource allows analysts to understand a specific weakness class by observing its manifestation across different versions and scenarios within the Fireware environment. Users can also look up a product's vulnerability history to assess long-term security posture and identify recurring issues that may indicate systemic design flaws. This centralized view simplifies the process of correlating individual flaws with broader security trends, enabling more informed risk management decisions. The data presented is derived from official vendor bulletins, independent security research, and publicly disclosed incidents, ensuring a reliable foundation for threat intelligence and defensive planning.

Vendor: WatchGuard

CVE IDTitleCVSSSeverityPublished
CVE-2026-3987 WatchGuard Firebox Arbitrary File Write vis Path Traversal in Fireware Web UI CWE-22 7.2AIHighAI2026-04-01
CVE-2026-4315 WatchGuard Firebox Cross-Site Request Forgery (CSRF) in Fireware Web UI CWE-352 6.5 -2026-03-30
CVE-2026-4266 WatchGuard Firebox Insecure Deserialization in Fireware Access Portal CWE-502 7.8 -2026-03-30
CVE-2026-3344 WatchGuard Firebox System Integrity Check Bypass CWE-440 6.8AIMediumAI2026-03-03
CVE-2026-3343 WatchGuard Firebox Reflected Cross-Site-Scripting (XSS) Vulnerability in Fireware Web UI CWE-79 6.1AIMediumAI2026-03-03
CVE-2026-3342 WatchGuard Firebox Out of Bounds Write Vulnerability CWE-787 7.2AIHighAI2026-03-03
CVE-2026-1498 WatchGuard Firebox LDAP Injection CWE-90 7.5AIHighAI2026-01-30
CVE-2025-14733 WatchGuard Firebox iked Out of Bounds Write Vulnerability CWE-787 9.8 -2025-12-19
CVE-2025-1547 WatchGuard Firebox Authenticated Stack Overflow in Certificate Request Command CWE-121 6.7AIMediumAI2025-12-04
CVE-2025-6946 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in IPS Configuration CWE-79 4.8AIMediumAI2025-12-04
CVE-2025-1545 WatchGuard Firebox XPath Injection Vulnerability in Web CGI CWE-91 7.5AIHighAI2025-12-04
CVE-2025-11838 WatchGuard Firebox iked Memory Corruption Vulnerability CWE-763 7.5AIHighAI2025-12-04
CVE-2025-13940 WatchGuard Firebox Boot Time System Integrity Check Bypass CWE-440 9.1AICriticalAI2025-12-04
CVE-2025-13939 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Gateway Wireless Controller CWE-79 5.4AIMediumAI2025-12-04
CVE-2025-13938 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Autotask Technology Integration Configuration CWE-79 5.4AIMediumAI2025-12-04
CVE-2025-13937 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in ConnectWise Technology Integration Configuration CWE-79 5.4AIMediumAI2025-12-04
CVE-2025-13936 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Tigerpaw Technology Integration Configuration CWE-79 4.8AIMediumAI2025-12-04
CVE-2025-12196 WatchGuard Firebox Authenticated Out of Bounds Write in Management CLI Ping Command CWE-787 6.7AIMediumAI2025-12-04
CVE-2025-12195 WatchGuard Firebox Authenticated Out of Bounds Write in Management CLI IPSec Configuration CWE-787 6.7AIMediumAI2025-12-04
CVE-2025-12026 WatchGuard Firebox Authenticated Out of Bounds Write in certd CWE-787 6.7AIMediumAI2025-12-04
CVE-2025-4106 WatchGuard Firebox leftover debug code vulnerability CWE-489 7.2 -2025-10-24
CVE-2025-9242 WatchGuard Firebox iked Out of Bounds Write Vulnerability CWE-787 9.8AICriticalAI2025-09-17
CVE-2025-6947 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in SIP Proxy Configuration CWE-79 4.8AIMediumAI2025-09-15
CVE-2025-6999 WatchGuard Firebox Authentication Portal Request Smuggling Vulnerability CWE-444 6.1AIMediumAI2025-09-15
CVE-2025-4805 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Acces Portal Configuration CWE-79 4.8AIMediumAI2025-05-16
CVE-2025-4804 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Hotpot Configuration CWE-79 4.8AIMediumAI2025-05-16
CVE-2025-0178 WatchGaurd Firebox Host Header Injection Vulnerability CWE-20 5.4 -2025-02-14
CVE-2025-1239 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Blocked Sites List CWE-79 4.8 -2025-02-14
CVE-2025-1071 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in spamBlocker Module CWE-79 4.8 -2025-02-14
CVE-2022-31749 Authenticated arbitrary file read/write in WatchGuard Fireware OS CWE-88 6.5 Medium2025-01-27

All 31 known CVE vulnerabilities affecting Fireware OS with full Chinese analysis, references, and POCs where available.