wid-sec-w-2026-0570 · Published 2026-03-02 · View on BSI CERT-Bund ↗

WatchGuard Firebox: Multiple Vulnerabilities

CVSS 8.6 HIGH

Risk Summary

A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited persistence via a maliciously-crafted firmware update package.This issue affects Fireware OS 12.0 up to and including 12.11.7, 12.5.9 up to and including 12.5.16, and 2025.1 up to and including 2026.1.1.

CVEs (3)

CVE-2026-3342 CVE-2026-3343 CVE-2026-3344

Affected Vendors

WatchGuard

Affected Products (6)

WatchGuard · Firebox <2026.1.2

WatchGuard · Firebox 2026.1.2

WatchGuard · Firebox <12.11.8

WatchGuard · Firebox 12.11.8

WatchGuard · Firebox <12.5.17

WatchGuard · Firebox 12.5.17

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more