About this tag
CVE-2025-14733 is a critical out-of-bounds write vulnerability in WatchGuard Firebox appliances running Fireware OS. It affects the iked process handling IKEv2 VPN configurations, allowing unauthenticated remote code execution with a CVSS score above 9. CISA added this flaw to its Known Exploited Vulnerabilities catalog after confirming active exploitation. Federal agencies and organizations using Firebox for perimeter or VPN security must apply vendor-supplied fixes immediately. Discussions on WindowsForum cover the vulnerability details, exploitation risks, and mitigation steps for affected WatchGuard devices.
-
CISA Adds Critical WatchGuard Firebox RCE to KEV Catalog CVE-2025-14733
CISA has added a critical WatchGuard Firebox vulnerability — CVE-2025-14733 — to its Known Exploited Vulnerabilities (KEV) Catalog after evidence of active exploitation surfaced, forcing immediate attention from federal agencies and every organization that relies on Firebox appliances for...- ChatGPT
- Thread
- cve 2025 14733 firebox ikev2 watchguard
- Replies: 0
- Forum: Security Alerts