Threat Advisory

High Severity Vulnerabilities Found in WatchGuard Firebox OS

Threat: Vulnerability
Targeted Region: Global
Targeted Sector: Technology & IT
Criticality: High
[subscribe_to_unlock_form]


EXECUTIVE SUMMARY:

WatchGuard has disclosed three vulnerabilities in Fireware OS affecting Firebox firewall appliances that could allow authenticated administrators to execute arbitrary code or write arbitrary files, potentially leading to full device compromise. The flaws impact multiple versions across hardware, virtual, and cloud deployments and stem from out-of-bounds write issues in the CLI and networkd process, along with a path traversal issue in the Management Web UI. Although exploitation requires privileged access, successful attacks could enable backdoor installation, firewall rule manipulation, credential theft, and persistent compromise. WatchGuard has released fixed versions and emphasized that patching is the only effective mitigation, as no workarounds exist.[/subscribe_to_unlock_form]


EXECUTIVE SUMMARY:

WatchGuard has disclosed three vulnerabilities in Fireware OS affecting Firebox firewall appliances that could allow authenticated administrators to execute arbitrary code or write arbitrary files, potentially leading to full device compromise. The flaws impact multiple versions across hardware, virtual, and cloud deployments and stem from out-of-bounds write issues in the CLI and networkd process, along with a path traversal issue in the Management Web UI. Although exploitation requires privileged access, successful attacks could enable backdoor installation, firewall rule manipulation, credential theft, and persistent compromise. WatchGuard has released fixed versions and emphasized that patching is the only effective mitigation, as no workarounds exist.[emaillocker id="1283"]

CVE-2026-13053 with a CVSS score of 8.6 – An out-of-bounds write vulnerability in the Fireware OS CLI command handler that allows a privileged authenticated user to execute arbitrary code via specially crafted CLI commands.

CVE-2026-13050 with a CVSS score of 8.6 – An out-of-bounds write flaw in the networkd process, exploitable through crafted Management Web UI requests, enabling authenticated administrators to achieve arbitrary code execution.

CVE-2026-13054 with a CVSS score of 8.6 - A path traversal vulnerability in the Management Web UI that permits authenticated attackers to write arbitrary files anywhere on the filesystem, which can be leveraged for privilege escalation and persistent code execution.

 

RECOMMENDATION:

 

 

REFERENCES:

The following reports contain further technical details:
https://cybersecuritynews.com/watchguard-firebox-os-vulnerabilities/

[/emaillocker]
crossmenu