CVE-2025-12196
HIGHWatchGuard Fireware 12.0-12.11.4, 12.5-12.5.13, 2025.1-2025.1.2 - Authenticated Remote Code Execution via CLI Command
Title source: llmDescription
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via a specially crafted CLI command.This vulnerability affects Fireware OS 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
References (1)
Core 1
Core References
Vendor Advisory
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00020
Scores
CVSS v3
7.2
EPSS
0.0051
EPSS Percentile
39.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-787
Status
published
Products (1)
watchguard/fireware
2025.1 - 2025.1.3
Published
Dec 04, 2025
Tracked Since
Feb 18, 2026