Watchguard Security Vulnerabilities (CVEs)

Track 24 security vulnerabilities affecting Watchguard products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

5 Critical

13 High

6 Medium

Sort by:

🔔 Get Alerts for Watchguard

CVE-2025-14733 9.8

A critical out-of-bounds write vulnerability in WatchGuard Fireware OS allows remote unauthenticated attackers to execute arbitrary code on affected s...

Dec 19, 2025

CVE-2025-6946 4.8

This stored cross-site scripting (XSS) vulnerability in WatchGuard Fireware OS allows authenticated administrators to inject malicious scripts via the...

Dec 4, 2025

CVE-2025-13939 6.1

This CVE describes a stored cross-site scripting (XSS) vulnerability in WatchGuard Fireware OS's Gateway Wireless Controller module. Attackers can inj...

Dec 4, 2025

CVE-2025-13940 5.5

This vulnerability in WatchGuard Fireware OS allows attackers to bypass the boot-time system integrity check and prevent the Firebox from shutting dow...

Dec 4, 2025

CVE-2025-1545 7.5

An XPath injection vulnerability in WatchGuard Fireware OS allows remote unauthenticated attackers to extract sensitive configuration data from Firebo...

Dec 4, 2025

CVE-2025-1547 7.2

A stack-based buffer overflow vulnerability in WatchGuard Fireware OS allows authenticated privileged users to execute arbitrary code via specially cr...

Dec 4, 2025

CVE-2025-12196 7.2

An authenticated privileged user can exploit an out-of-bounds write vulnerability in WatchGuard Fireware OS's CLI via a specially crafted command to e...

Dec 4, 2025

CVE-2025-13936 6.1

A stored cross-site scripting (XSS) vulnerability in WatchGuard Fireware OS's Tigerpaw Technology Integration module allows attackers to inject malici...

Dec 4, 2025

CVE-2025-13937 6.1

A stored cross-site scripting (XSS) vulnerability in WatchGuard Fireware OS allows attackers to inject malicious scripts into web pages generated by t...

Dec 4, 2025

CVE-2025-13938 6.1

This stored cross-site scripting (XSS) vulnerability in WatchGuard Fireware OS allows attackers to inject malicious scripts into web pages generated b...

Dec 4, 2025

CVE-2025-11838 7.5

A memory corruption vulnerability in WatchGuard Fireware OS allows unauthenticated attackers to trigger Denial of Service (DoS) conditions in Mobile U...

Dec 4, 2025

CVE-2025-12026 7.2

An authenticated privileged user can execute arbitrary code on WatchGuard Fireware OS devices by exploiting an out-of-bounds write vulnerability in th...

Dec 4, 2025

CVE-2025-12195 7.2

An authenticated privileged user can execute arbitrary code on WatchGuard Fireware OS devices by sending specially crafted IPSec configuration command...

Dec 4, 2025

CVE-2025-9242 9.8

An out-of-bounds write vulnerability in WatchGuard Fireware OS allows remote unauthenticated attackers to execute arbitrary code on affected systems. ...

Sep 17, 2025

CVE-2024-13043 7.8

This vulnerability in Panda Security Dome allows local attackers to escalate privileges by exploiting a link following flaw in Hotspot Shield. Attacke...

Dec 30, 2024

CVE-2024-6592 9.1

This CVE describes an authentication bypass vulnerability in WatchGuard's Single Sign-On system. Attackers can exploit incorrect authorization in prot...

Sep 25, 2024

CVE-2024-6594 7.5

A denial-of-service vulnerability in WatchGuard Single Sign-On Client for Windows allows attackers with network access to crash the SSO service by sen...

Sep 25, 2024

CVE-2024-4944 7.8

This CVE describes a local privilege escalation vulnerability in WatchGuard Mobile VPN with SSL client on Windows. It allows a local authenticated use...

Jul 9, 2024

CVE-2023-26236 7.8

This vulnerability allows local attackers to escalate privileges on Windows systems running WatchGuard EPDR 8.0.21.0002. By sending a specially crafte...

Oct 5, 2023

CVE-2022-25361 9.1

CVE-2022-25361 allows unauthenticated remote attackers to delete arbitrary files from specific directories on WatchGuard Firebox and XTM appliances. T...

Jun 7, 2022

CVE-2022-26318 9.8

CVE-2022-26318 is a critical remote code execution vulnerability affecting WatchGuard Firebox and XTM firewall appliances. Unauthenticated attackers c...

Mar 4, 2022

CVE-2022-25291 8.8

An integer overflow vulnerability in WatchGuard Firebox and XTM appliances allows authenticated remote attackers to trigger a heap-based buffer overfl...

Feb 24, 2022

CVE-2022-25293 8.8

CVE-2022-25293 is a stack-based buffer overflow vulnerability in systemd on WatchGuard Firebox and XTM appliances, allowing authenticated remote attac...

Feb 24, 2022

CVE-2022-25360 8.8

CVE-2022-25360 allows authenticated remote attackers with unprivileged credentials to upload files to arbitrary locations on WatchGuard Firebox and XT...

Feb 24, 2022

Why Monitor Watchguard Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 24+ known vulnerabilities affecting Watchguard products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Watchguard packages in under 60 seconds. No agents required - completely agentless scanning that works across Watchguard deployments.

Free vulnerability database: Access detailed information about every Watchguard CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

Register free account & add your servers
Run one-time scan or schedule automatic monitoring (every 1-24 hours)
Receive instant alerts when new Watchguard CVEs affect your systems
Access dashboard with severity breakdown & fix instructions

Start Monitoring Watchguard CVEs Free