CVE-2025-14733

UNKNOWN 0.0

⚠️ CISA KEV

WatchGuard Firebox iked Out of Bounds Write Vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to execute arbitrary code. This vulnerability affects both the Mobile User VPN with IKEv2 and the Branch Office VPN using IKEv2 when configured with a dynamic gateway peer.This vulnerability affects Fireware OS 11.10.2 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.5 and 2025.1 up to and including 2025.1.3.

CWE	CWE-787
Vendor	watchguard
Product	fireware os
Published	Dec 19, 2025
Last Updated	Feb 26, 2026

⚠️ Actively Exploited — Act Now

Get instant alerts for watchguard fireware os

This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2025-14733.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

WatchGuard / Fireware OS

11.10.2 ≤ 11.12.4+541730 12.0 ≤ 12.11.5 12.5 ≤ 12.5.14 2025.1 ≤ 2025.1.3

References

NVD ↗ CVE.org ↗ EPSS Data ↗

watchguard.com: https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00027 cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-14733