WatchGuard Firebox XPath Injection Vulnerability in Web CGI
CVE-2025-1545

8.2HIGH

Key Information:

Vendor: Watchguard
Status: Fireware Os
Vendor: CVE Published:; 4 December 2025

What is CVE-2025-1545?

An XPath Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to retrieve sensitive information from the Firebox configuration through an exposed authentication or management web interface. This vulnerability only affects Firebox systems that have at least one authentication hotspot configured.This issue affects Fireware OS 11.11 up to and including 11.12.4+541730, 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.

Affected Version(s)

Fireware OS 11.11 <= 11.12.4+541730

Fireware OS 12.0 <= 12.11.4

Fireware OS 12.5 <= 12.5.13

References

https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-...

CVSS V4

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 4, 2025
Vulnerability Reserved
Feb 21, 2025

JSON

Watchguard

What is CVE-2025-1545?

Affected Version(s)

References

CVSS V4

Timeline