A cloud-native network security solution that provides enterprise-grade security features including firewall, IPS, antivirus, and VPN capabilities for cloud environments. WatchGuard Firebox Cloud is designed to protect workloads running in public cloud platforms like AWS and Azure, offering unified security management and policy enforcement across hybrid infrastructures.

WatchGuard Firebox

An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote attacker to trigger a heap-based buffer overflow and potentially execute arbitrary code by initiating a firmware update with a malicious upgrade image. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-14733	CRITICAL	9.3	WatchGuard Firebox	cpe:2.3:o:watchguard:fireware	Yes	Yes	Dec 19, 2025
CVE-2025-1545	HIGH	8.2	WatchGuard Firebox	cpe:2.3:o:watchguard:fireware	No	Yes	Dec 04, 2025
CVE-2025-1547	HIGH	7.5	WatchGuard Firebox	cpe:2.3:o:watchguard:fireware	No	Yes	Dec 04, 2025
CVE-2025-13940	MEDIUM	6.7	WatchGuard Firebox	cpe:2.3:o:watchguard:fireware	No	Yes	Dec 04, 2025
CVE-2025-6946	MEDIUM	4.8	WatchGuard Firebox	cpe:2.3:o:watchguard:fireware	No	Yes	Dec 04, 2025

CVE-2022-25291:
WatchGuard Firebox vulnerability analysis and mitigation

8.8

Related WatchGuard Firebox vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2022-25291: WatchGuard Firebox vulnerability analysis and mitigation