CVE-2025-1910

MEDIUM

WatchGuard Mobile VPN <12.11.2 - Privilege Escalation

Title source: llm

Description

The WatchGuard Mobile VPN with SSL Client on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY/SYSTEM on the Windows machine where the VPN Client is installed.This issue affects the Mobile VPN with SSL Client 12.0 up to and including 12.11.2.

Exploits (1)

nomisec WORKING POC

by lutrasecurity · poc

https://github.com/lutrasecurity/CVE-2025-1910-WatchGuard-Privilege-Escalation

View Code ZIP pw:eip

References (1)

[Vendor Advisory] https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00008

Scores

CVSS v4 6.3

EPSS 0.0002

EPSS Percentile 6.7%

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H

Details

CWE

CWE-77

Status published

Products (1)

WatchGuard/Mobile VPN with SSL Client 12.0 - 12.11.2

Published Dec 04, 2025

Tracked Since Feb 18, 2026