Expected Behavior Violation in WatchGuard Fireware OS Allows System Integrity Check Bypass
CVE-2025-13940
6.7MEDIUM
What is CVE-2025-13940?
A security flaw in WatchGuard Fireware OS allows attackers to bypass crucial boot time system integrity checks. This vulnerability prevents the Firebox device from shutting down during a system integrity check failure, exposing the system to potential security risks. Users are urged to update to secure versions to mitigate this issue.
Affected Version(s)
Fireware OS 12.8.1 <= 12.11.4
Fireware OS 2025.1 <= 2025.1.2
References
CVSS V4
Score:
6.7
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
Vulnerability published
Vulnerability Reserved