CVE-2025-14733

Summary

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to execute arbitrary code. This vulnerability affects both the Mobile User VPN with IKEv2 and the Branch Office VPN using IKEv2 when configured with a dynamic gateway peer.This vulnerability affects Fireware OS 11.10.2 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.5 and 2025.1 up to and including 2025.1.3.

Affected Software

VendorProductVersion RangeStatus
WatchGuardFireware OS11.10.2 <= 11.12.4+541730affected
WatchGuardFireware OS12.0 <= 12.11.5affected
WatchGuardFireware OS12.5 <= 12.5.14affected
WatchGuardFireware OS2025.1 <= 2025.1.3affected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: yes
    • Technical Impact: total

Additional References

References