PT-2026-22733 · Watchguard · Fireware Os
Btaol
·
Published
2026-03-03
·
Updated
2026-03-04
·
CVE-2026-3343
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Fireware OS versions 12.7 through 12.11.7
Fireware OS versions 2025.1 through 2026.1.1
Description
A reflected cross-site scripting (XSS) issue exists in the Fireware OS Web UI. This allows for the execution of malicious JavaScript within the browser of an authenticated management user when they click a specially crafted link. The issue enables code execution in the user's context.
Recommendations
Fireware OS versions 12.7 through 12.11.7 should be updated.
Fireware OS versions 2025.1 through 2026.1.1 should be updated.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fireware Os