Out-of-bounds Write Vulnerability in WatchGuard Fireware OS for VPN Solutions
CVE-2025-9242

9.3CRITICAL

Key Information:

Vendor: Watchguard
Status: Fireware Os
Vendor: CVE Published:; 17 September 2025

What is CVE-2025-9242?

A serious Out-of-bounds Write vulnerability in WatchGuard Fireware OS can be exploited by a remote unauthenticated attacker, potentially enabling the execution of arbitrary code. This flaw impacts various Virtual Private Network (VPN) services, including the Mobile User VPN and Branch Office VPN, especially when configured with a dynamic gateway peer. Systems running Fireware OS versions 11.10.2 to 11.12.4_Update1, 12.0 to 12.11.3, and 2025.1 are particularly vulnerable, highlighting the importance of prompt patching and system updates to mitigate risks.

Affected Version(s)

Fireware OS 12.0 <= 12.11.3

Fireware OS 11.10.2 <= 11.12.4+541730

Fireware OS 2025.1 < 2025.1.1

References

https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-...

CVSS V4

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 17, 2025
Vulnerability Reserved
Aug 20, 2025

Credit

btaol

Watchguard

What is CVE-2025-9242?

Affected Version(s)

References

CVSS V4

Timeline

Credit