3 matches found
CVE-2025-4106 WatchGuard Firebox leftover debug code vulnerability
An authenticated admin user with access to both the management WebUI and command line interface on a Firebox can enable a diagnostic debug shell by uploading a platform and version-specific diagnostic package and executing a leftover diagnostic command. This issue affects Fireware OS: from 12.0...
CVE-2025-6947
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WatchGuard Fireware OS allows Stored XSS via the SIP Proxy module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects Firebox...
WatchGuard Fireware OS Firebox 安全漏洞
WatchGuard Fireware OS Firebox is a network security hardware appliance from WatchGuard USA. A security vulnerability exists in WatchGuard Fireware OS Firebox versions 12.0 through 12.11.2, which stems from improper input neutralization in the SIP Proxy module and could lead to a stored cross-sit...