CVE-2026-13079
HighCVSS 7.3Summary
A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client for Windows allows a local attacker to escalate their privileges to NT AUTHORITY\SYSTEM on the machine where the client is installed. This issue affects the Mobile VPN with SSL client for Windows up to and including version 2026.2.
Risk Assessment
The organization is at risk of a local user gaining full system control, potentially leading to data theft, malware installation, or further network compromise.
Recommendation
Immediately update the WatchGuard Mobile VPN with SSL client for Windows to a version later than 2026.2 once a patch is released. Until then, restrict local access to systems with the client installed.
Original NVD description (English source)
A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client for Windows allows a local attacker to escalate their privileges to NT AUTHORITY\SYSTEM on the machine where the client is installed. This issue affects the Mobile VPN with SSL client for Windows up to and including 2026.2.

