Researchers Uncover WatchGuard VPN Bug That Could Let Attackers Take Over Devices
Researchers Uncover WatchGuard VPN Bug That Could Let Attackers Take Over Devices
17 October 2025
Cybersecurity researchers have disclosed details of a recently patched critical security flaw in WatchGuard Fireware that could allow unauthenticated attackers to execute arbitrary code.
The vulnerability, tracked as CVE-2025-9242 (CVSS score: 9.3), is described as an out-of-bounds write vulnerability affecting Fireware OS 11.10.2 up to and including 11.12.4_Update1, 12.0 up to and including