CVE-2025-2781

Summary

The WatchGuard Mobile VPN with SSL Client on Windows does not properly configure directory permissions when installed in a non-default directory. This could allow an authenticated local attacker to escalate to SYSTEM privileges on a vulnerable system.

This issue affects Mobile VPN with SSL Client: from 11.0 through 12.11.

Affected Software

VendorProductVersion RangeStatus
WatchGuardMobile VPN with SSL Client11.0 <= 12.11affected

Weaknesses

  • CWE-276: CWE-276 Incorrect Default Permissions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References