A cloud-native network security solution that provides enterprise-grade security features including firewall, IPS, antivirus, and VPN capabilities for cloud environments. WatchGuard Firebox Cloud is designed to protect workloads running in public cloud platforms like AWS and Azure, offering unified security management and policy enforcement across hybrid infrastructures.

WatchGuard Firebox

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS allows Stored XSS via the IPS module. This vulnerability requires an authenticated administrator session to a locally managed Firebox.

This issue affects Firebox: from 12.0 through 12.11.2.

Identifiant CVE	Sévérité	Score	Technologies	Nom du composant	Exploit CISA KEV	A corrigé	Date de publication
CVE-2025-14733	CRITICAL	9.3	WatchGuard Firebox	cpe:2.3:o:watchguard:fireware	Oui	Oui	Dec 19, 2025
CVE-2025-1545	HIGH	8.2	WatchGuard Firebox	cpe:2.3:o:watchguard:fireware	Non	Oui	Dec 04, 2025
CVE-2025-1547	HIGH	7.5	WatchGuard Firebox	cpe:2.3:o:watchguard:fireware	Non	Oui	Dec 04, 2025
CVE-2025-13940	MEDIUM	6.7	WatchGuard Firebox	cpe:2.3:o:watchguard:fireware	Non	Oui	Dec 04, 2025
CVE-2025-6946	MEDIUM	4.8	WatchGuard Firebox	cpe:2.3:o:watchguard:fireware	Non	Oui	Dec 04, 2025

CVE-2025-6946:
WatchGuard Firebox Analyse et atténuation des vulnérabilités

4.8

Apparenté WatchGuard Firebox Vulnérabilités:

Évaluez votre posture de sécurité dans le cloud

Ressources Wiz supplémentaires

PEACH

Prêt(e) à voir Wiz en action ?

CVE-2025-6946: WatchGuard Firebox Analyse et atténuation des vulnérabilités