CVE Catalog

CVE-2026-13384

HighCVSS 8.6
Published: Translated: NVD NIST

Summary

An Out-of-bounds Write vulnerability in the wgagent process of WatchGuard Fireware OS allows an authenticated privileged user to execute arbitrary code via specially crafted requests to the Management Web UI. This affects Fireware OS versions 12.1 through 12.12 and 2025.1 through 2026.2.

Risk Assessment

The risk involves potential takeover of the device by a privileged attacker, leading to compromise of data integrity and confidentiality within the organization's network.

Recommendation

Immediately update WatchGuard Fireware OS to a patched version and restrict access to the management interface to trusted IP addresses only.

Original NVD description (English source)

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated privileged user to execute arbitrary code via a specially crafted requests to the Management Web UI.This vulnerability affects Fireware OS 12.1 up to and including 12.12 and 2025.1 up to and including 2026.2.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS