CVE-2026-4315

Name of the Vulnerable Software and Affected Versions WatchGuard Fireware OS versions 11.8 through 11.12.4+541730 WatchGuard Fireware OS versions 12.0 through 12.11.8 WatchGuard Fireware OS versions 2025.1 through 2026.1.2

Description A Cross-Site Request Forgery (CSRF) issue in the Fireware OS WebUI could allow a remote attacker to trigger a denial-of-service (DoS) condition in the Fireware Web UI by convincing an authenticated administrator into visiting a malicious web page.

Recommendations WatchGuard Fireware OS versions 11.8 through 11.12.4+541730: At the moment, there is no information about a newer version that contains a fix for this vulnerability. WatchGuard Fireware OS versions 12.0 through 12.11.8: At the moment, there is no information about a newer version that contains a fix for this vulnerability. WatchGuard Fireware OS versions 2025.1 through 2026.1.2: At the moment, there is no information about a newer version that contains a fix for this vulnerability.