Article

Advisory: Critical WatchGuard Fireware OS Vulnerability (CVE‑2025‑14733)

WatchGuard has identified a critical security flaw in its Firebox firewalls, tracked as CVE-2025-14733. The vulnerability allows attackers to remotely run malicious code on unpatched devices without requiring a password or user interaction.

Affected Systems:

Firebox devices running Fireware OS versions: 11.10.2 - 11.12.4_Update1, 12.0 - 12.11.5, and 2025.1 - 2025.1.3.

Security Risks

Exploitation of this vulnerability could allow attackers to gain unauthorized access to the firewall, potentially access internal networks, and disrupt services.

Recommended Actions

The National Cyber Security Authority (NCSA) recommends users and system administrators to:

Follow the Watchguard Security Advisory and apply the recommended updates to reduce vulnerability exploitation risk.
Apply the required and latest security updates as soon as possible.

The released software versions for upgrade are:

Firebox devices running Fireware OS versions: Upgrade to 2025.1.4 or higher, 12.11.6 or higher, 12.5.15 or higher, 12.3.1 Update 4 or higher.

Fireware OS 11.x has reached End of Life (EOL) and no longer receives security updates; affected devices must be upgraded to a supported version.

Ensure you have the latest backup that can be easily restored before applying any updates or patches.

For further information and support, please contact the National Cyber Security Authority (NCSA) by email to rwcsirt@ncsa.gov.rw or call us on 9009.

References

22 December 2025

More updates

18 December 2025

Alert: Fortinet Security Updates – December 2025

Fortinet has released security updates addressing two critical authentication bypass vulnerabilities.

15 December 2025

Alert: Apple Security Updates – December 2025

Apple has released security updates to address two zero‑day vulnerabilities

15 December 2025

Security Alert: React Server Components – Denial-of-Service and Source Code Exposure

Multiple vulnerabilities have been discovered in React Server Components

12 December 2025

Security Alert: Notepad++ Update Vulnerability Enables Malware Installation

A critical security flaw has been identified in the Notepad++ WinGUp updater.

WatchGuard has identified a critical security flaw in its Firebox firewalls, tracked as CVE-2025-14733. The vulnerability allows attackers to remotely run malicious code on unpatched devices without requiring a password or user interaction.

Affected Systems:

Firebox devices running Fireware OS versions: 11.10.2 - 11.12.4_Update1, 12.0 - 12.11.5, and 2025.1 - 2025.1.3.

Security Risks

Exploitation of this vulnerability could allow attackers to gain unauthorized access to the firewall, potentially access internal networks, and disrupt services.

Recommended Actions

The National Cyber Security Authority (NCSA) recommends users and system administrators to:

Follow the Watchguard Security Advisory and apply the recommended updates to reduce vulnerability exploitation risk.

Apply the required and latest security updates as soon as possible.

The released software versions for upgrade are:

Firebox devices running Fireware OS versions: Upgrade to 2025.1.4 or higher, 12.11.6 or higher, 12.5.15 or higher, 12.3.1 Update 4 or higher.

Fireware OS 11.x has reached End of Life (EOL) and no longer receives security updates; affected devices must be upgraded to a supported version.

Ensure you have the latest backup that can be easily restored before applying any updates or patches.

For further information and support, please contact the National Cyber Security Authority (NCSA) by email to rwcsirt@ncsa.gov.rw or call us on 9009.

References

https://www.watchguard.com/wgrd-psirt/advisories

WatchGuard Firebox iked Out of Bounds Write Vulnerability

New critical WatchGuard Firebox firewall flaw exploited in attacks

https://www.watchguard.com/wgrd-blog/watchguard-fireware-versions-202514-12116-and-12515-available-now

	info@ncsa.gov.rw
	9009 / 0781813310
	‎+250 791 445 224