CVE-2025-1910

MEDIUM

WatchGuard Mobile VPN <12.11.2 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-1910. PoCs published by lutrasecurity.

AI-analyzed exploit summary This repository contains a functional privilege escalation exploit for CVE-2025-1910 in WatchGuard Mobile VPN with SSL. The exploit leverages a malicious .wgssl file to execute arbitrary commands as SYSTEM on the client machine.

Description

The WatchGuard Mobile VPN with SSL Client on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY/SYSTEM on the Windows machine where the VPN Client is installed.This issue affects the Mobile VPN with SSL Client 12.0 up to and including 12.11.2.

Exploits (1)

nomisec WORKING POC
by lutrasecurity · poc
https://github.com/lutrasecurity/CVE-2025-1910-WatchGuard-Privilege-Escalation

This repository contains a functional privilege escalation exploit for CVE-2025-1910 in WatchGuard Mobile VPN with SSL. The exploit leverages a malicious .wgssl file to execute arbitrary commands as SYSTEM on the client machine.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: WatchGuard Mobile VPN with SSL <= 12.11.2
No auth needed
Prerequisites: Attacker-controlled server with OpenVPN and Flask · Victim machine with vulnerable WatchGuard Mobile VPN with SSL installed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v4 6.3
EPSS 0.0021
EPSS Percentile 11.0%
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-77
Status published
Products (1)
WatchGuard/Mobile VPN with SSL Client 12.0 - 12.11.2
Published Dec 04, 2025
Tracked Since Feb 18, 2026