CVE-2026-3344

Summary

A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited persistence via a maliciously-crafted firmware update package.This issue affects Fireware OS 12.0 up to and including 12.11.7, 12.5.9 up to and including 12.5.16, and 2025.1 up to and including 2026.1.1.

Affected Software

VendorProductVersion RangeStatus
WatchGuardFireware OS12.0 <= 12.11.7affected
WatchGuardFireware OS12.5.9 <= 12.5.16affected
WatchGuardFireware OS2025.1 <= 2026.1.1affected

Weaknesses

  • CWE-440: CWE-440: Expected Behavior Violation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References