PT-2025-49164 · Watchguard · Fireware Os

Published

2025-12-04

Updated

2025-12-10

CVE-2025-13940

CVSS v4.0

6.7

Medium

Vector

AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions WatchGuard Fireware OS versions 12.8.1 through 12.11.4 WatchGuard Fireware OS versions 2025.1 through 2025.1.2

Description A flaw exists within the Fireware OS that could allow an attacker to circumvent the boot time system integrity check. This bypass could also prevent the Firebox from shutting down when a system integrity check fails. The on-demand system integrity check within the Fireware Web UI will accurately report a failed system integrity check in such instances.

Recommendations Update to a version of Fireware OS later than 12.11.4. Update to a version of Fireware OS later than 2025.1.2.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-440

Related Identifiers

BDU:2025-15420

CVE-2025-13940

Affected Products

Fireware Os

PT-2025-49164 · Watchguard · Fireware Os

CVE-2025-13940

Weakness Enumeration

Related Identifiers

Affected Products

References · 7