PT-2025-13593 · Watchguard · Watchguard Mobile Vpn With Ssl Client

Published

2025-03-28

Updated

2025-03-29

CVE-2025-2781

CVSS v4.0

6.3

Medium

Vector

AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:H/SI:H/SA:H

Name of the Vulnerable Software and Affected Versions WatchGuard Mobile VPN with SSL Client versions 11.0 through 12.11

Description The issue is related to the improper configuration of directory permissions when the WatchGuard Mobile VPN with SSL Client is installed in a non-default directory on Windows. This could allow an authenticated local attacker to escalate to SYSTEM privileges on a vulnerable system.

Recommendations For versions 11.0 through 12.11, update to a version that properly configures directory permissions to prevent privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-276

Related Identifiers

CVE-2025-2781

Affected Products

Watchguard Mobile Vpn With Ssl Client

PT-2025-13593 · Watchguard · Watchguard Mobile Vpn With Ssl Client

CVE-2025-2781

Weakness Enumeration

Related Identifiers

Affected Products

References · 6