Local Privilege Escalation in WatchGuard Mobile VPN Client for Windows
CVE-2025-1549

6.3MEDIUM

Key Information:

Vendor: Watchguard
Status: Mobile Vpn With Ssl Client
Vendor: CVE Published:; 29 October 2025

What is CVE-2025-1549?

A local privilege escalation vulnerability exists in the WatchGuard Mobile VPN with SSL client for Windows, which allows an authenticated local user to execute arbitrary commands with elevated privileges. This issue provides an additional attack vector for potential exploitation related to previous vulnerabilities. The vulnerability has been addressed in the Mobile VPN with SSL client for Windows version 12.11.3, which mitigates the risks associated with this flaw.

Affected Version(s)

Mobile VPN with SSL Client Windows 0 <= 12.10

References

https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-...

CVSS V4

Score:

6.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 29, 2025
Vulnerability Reserved
Feb 21, 2025

Credit

Defence Tech Malware Lab

JSON

Watchguard

What is CVE-2025-1549?

Affected Version(s)

References

CVSS V4

Timeline

Credit