CVE-2026-13384
HighCVSS 8.6Summary
An Out-of-bounds Write vulnerability in the wgagent process of WatchGuard Fireware OS allows an authenticated privileged user to execute arbitrary code via specially crafted requests to the Management Web UI. This affects Fireware OS versions 12.1 through 12.12 and 2025.1 through 2026.2.
Risk Assessment
The risk involves potential takeover of the device by a privileged attacker, leading to compromise of data integrity and confidentiality within the organization's network.
Recommendation
Immediately update WatchGuard Fireware OS to a patched version and restrict access to the management interface to trusted IP addresses only.
Original NVD description (English source)
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated privileged user to execute arbitrary code via a specially crafted requests to the Management Web UI.This vulnerability affects Fireware OS 12.1 up to and including 12.12 and 2025.1 up to and including 2026.2.

