Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.9
WatchGuard Fireware OS: Malicious Firmware Update Bypasses Security Check
CVE-2026-3344
Summary
WatchGuard Fireware OS versions 12.0 to 12.11.7, 12.5.9 to 12.5.16, and 2025.1 to 2026.1.1 are affected. An attacker can use a fake firmware update to bypass security checks and stay on the system. Update your Fireware OS to a fixed version as soon as possible to prevent unauthorized access.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| watchguard | fireware | > 12.0 , <= 12.11.8 | – |
| watchguard | fireware | > 12.5.9 , <= 12.5.17 | – |
| watchguard | fireware | > 2025.1 , <= 2026.1.2 | – |
Original title
A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited persistence via a maliciously-crafted firmware update packa...
Original description
A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited persistence via a maliciously-crafted firmware update package.This issue affects Fireware OS 12.0 up to and including 12.11.7, 12.5.9 up to and including 12.5.16, and 2025.1 up to and including 2026.1.1.
nvd CVSS3.1
4.9
nvd CVSS4.0
6.9
Vulnerability type
CWE-440
- https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2026-00005 Vendor Advisory
Published: 3 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026