WatchGuard Firebox Remote Code Execution Vulnerability
Summary
CERT-Bund published security advisory WID-SEC-2026-0952 reporting a high-severity vulnerability (CVSS 7.2) in WatchGuard Firebox and Unified Threat Management products. An authenticated remote attacker can exploit this flaw to execute arbitrary code on affected systems. Versions prior to 2026.2 and 12.12 are vulnerable.
What changed
CERT-Bund reported CVE-2026-0952, a remote code execution vulnerability affecting WatchGuard Firebox devices running versions below 2026.2 and 12.12. The vulnerability allows authenticated remote attackers to execute arbitrary code by exploiting the flaw in the affected firewall products. No additional CVE details are currently publicly linked.
Organizations using WatchGuard Firebox products should immediately verify their device versions, apply available patches or mitigations, restrict management interface access to trusted networks only, and monitor for indicators of compromise. Given the high CVSS score and remote exploitability, prioritize patching within 30 days.
What to do next
- Identify all WatchGuard Firebox devices and verify current version numbers
- Apply vendor patches or workarounds immediately, prioritizing internet-facing devices
- Restrict management interface access to trusted IP ranges and monitor for anomalous activity
Source document (simplified)
[WID-SEC-2026-0952] WatchGuard Firebox: Schwachstelle ermöglicht Codeausführung CVSS Base Score 7.2 (hoch) CVSS Temporal Score 6.3 (mittel) Remoteangriff ja Datum 01.04.2026 Stand 02.04.2026 Mitigation ja
Betroffene Systeme
Betriebssystem
- Sonstiges
Produktbeschreibung
WatchGuard Firebox ist ein Firewall bzw. Unified Threat Management Produkt.
Produkte
01.04.2026
- WatchGuard Firebox <2026.2
- WatchGuard Firebox <12.12
Angriff
Angriff
Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in WatchGuard Firebox ausnutzen, um beliebigen Programmcode auszuführen. CVE Informationen Versionshistorie Feedback zum Advisory geben
Named provisions
Related changes
Source
Classification
Who this affects
Taxonomy
Browse Categories
Get Data Privacy & Cybersecurity alerts
Weekly digest. AI-summarized, no noise.
Free. Unsubscribe anytime.
Get alerts for this source
We'll email you when CERT-Bund Security Advisories publishes new changes.