CVE-2025-12196 WatchGuard Firebox Authenticated Out of Bounds Write in Management CLI Ping Command

🗓️ 04 Dec 2025 21:45:29Reported by WatchGuardType

Authenticated user can trigger out-of-bounds write via management CLI ping on WatchGuard Fireware OS versions 12.0–12.11.4, 12.5–12.5.13, and 2025.1–2025.1.2.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2025-12196	4 Dec 202522:08	–	circl
CNNVD	WatchGuard Fireware OS 安全漏洞	4 Dec 202500:00	–	cnnvd
CVE	CVE-2025-12196	4 Dec 202521:45	–	cve
EUVD	EUVD-2025-201304	5 Dec 202500:31	–	euvd
NVD	CVE-2025-12196	4 Dec 202522:15	–	nvd
Positive Technologies	PT-2025-49156	4 Dec 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-12196	5 Dec 202522:33	–	redhatcve
The Hacker News	⚡ Weekly Recap: Apple 0-Days, WinRAR Exploit, LastPass Fines, .NET RCE, OAuth Scams & More	15 Dec 202512:24	–	thn
Vulnrichment	CVE-2025-12196 WatchGuard Firebox Authenticated Out of Bounds Write in Management CLI Ping Command	4 Dec 202521:45	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "Fireware OS",
    "vendor": "WatchGuard",
    "versions": [
      {
        "lessThanOrEqual": "12.11.4",
        "status": "affected",
        "version": "12.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "12.5.13",
        "status": "affected",
        "version": "12.5",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "2025.1.2",
        "status": "affected",
        "version": "2025.1",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
watchguard	www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00020

04 Dec 2025 23:22Current

CVSS 48.6

EPSS0.0051

CWE-787