CVE-2025-1547 | THREATINT

Description

A stack-based buffer overflow vulnerability [CWE-121] in WatchGuard Fireware OS's certificate request command could allow an authenticated privileged user to execute arbitrary code via specially crafted CLI commands.This issue affects Fireware OS: from 12.0 through 12.5.12+701324, from 12.6 through 12.11.2.

PUBLISHED Reserved 2025-02-21 | Published 2025-12-04 | Updated 2025-12-06 | Assigner WatchGuard

HIGH: 7.5CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-121 Stack-based Buffer Overflow

Product status

Default status

unaffected

12.0 (semver)

affected

12.6 (semver)

affected

Credits

Cody Sixteen finder

References

www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00013

cve.org (CVE-2025-1547)

nvd.nist.gov (CVE-2025-1547)