CVE-2025-4106 Watchguard — Exploit & Vulnerability Details HIGH

CVE-2025-4106

HIGH CVSS 4.0: 8.9 EPSS 0.06%

Parameter	Value
CVSS	8.9 (HIGH)
Affected Versions	before 12.11.2.
Type	CWE-489
Vendor	Watchguard
Public PoC	No

An authenticated admin user with access to both the management WebUI and command line interface on a Firebox can enable a diagnostic debug shell by uploading a platform and version-specific diagnostic package and executing a leftover diagnostic command. This issue affects Fireware OS: from 12.0 before 12.11.2.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

Low

Easy to exploit

Attack Requirements

Present

Additional conditions required

Privileges Required

High

Admin privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

High

Complete data leak

Integrity

High

Complete data modification

Availability

High

Complete denial of service

CVSS Vector v4.0

Weakness Type (CWE)

CWE-489

Vulnerable Products

watchguard:fireware os

References 1

https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00010

5d1c2695-1a31-4499-88ae-e847036fd7e3

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-3344

Watchguard

6.9

CVE-2026-3343

Watchguard

5.1

CVE-2026-3342

Watchguard

8.6

CVE-2025-1549

Watchguard

6.3

Menu

CVE-2025-4106

Attack Parameters

Impact Assessment

CVSS Vector v4.0

Weakness Type (CWE)

Vulnerable Products

References 1

Related Vulnerabilities

CVE-2026-3344

CVE-2026-3343

CVE-2026-3342

CVE-2025-1549

CVE Details

Editor's Choice

Menu

CVE-2025-4106

Attack Parameters

Impact Assessment

CVSS Vector v4.0

Weakness Type (CWE)

Vulnerable Products

References 1

Related Vulnerabilities

CVE-2026-3344

CVE-2026-3343

CVE-2026-3342

CVE-2025-1549

CVE Details

Editor's Choice

Stay informed on cybersecurity