Hard-coded Cryptographic Key Issue in WatchGuard Agent for Windows
CVE-2026-6787

8.5HIGH

Key Information:

Vendor: Watchguard
Status: Watchguard Agent
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-6787?

The WatchGuard Agent for Windows is impacted by a vulnerability that involves the use of a hard-coded cryptographic key. This flaw permits an attacker to execute code within the context of an existing process, posing potential security risks to affected systems. Users are advised to upgrade to versions later than 1.25.03.0000 to mitigate this issue.

Affected Version(s)

WatchGuard Agent Windows 0 < 1.25.03.0000

References

https://www.watchguard.com/wgrd-psirt/advisory/WGSA-2026-...

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
Apr 21, 2026

CVE-2026-6787 Data

JSON

Watchguard

What is CVE-2026-6787?

Affected Version(s)

References

CVSS V4

Timeline