Vulnerability Details CVE-2025-12195
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via specially crafted IPSec configuration CLI commands.This vulnerability affects Fireware OS 11.0 up to and including 11.12.4+541730, 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.0%
CVSS Severity
CVSS v3 Score 7.2
Products affected by CVE-2025-12195
-
cpe:2.3:h:watchguard:firebox_m270:-
-
cpe:2.3:h:watchguard:firebox_m290:-
-
cpe:2.3:h:watchguard:firebox_m370:-
-
cpe:2.3:h:watchguard:firebox_m390:-
-
cpe:2.3:h:watchguard:firebox_m440:-
-
cpe:2.3:h:watchguard:firebox_m4600:-
-
cpe:2.3:h:watchguard:firebox_m470:-
-
cpe:2.3:h:watchguard:firebox_m4800:-
-
cpe:2.3:h:watchguard:firebox_m5600:-
-
cpe:2.3:h:watchguard:firebox_m570:-
-
cpe:2.3:h:watchguard:firebox_m5800:-
-
cpe:2.3:h:watchguard:firebox_m590:-
-
cpe:2.3:h:watchguard:firebox_m670:-
-
cpe:2.3:h:watchguard:firebox_m690:-
-
cpe:2.3:h:watchguard:firebox_nv5:-
-
cpe:2.3:h:watchguard:firebox_t115-w:-
-
cpe:2.3:h:watchguard:firebox_t125-w:-
-
cpe:2.3:h:watchguard:firebox_t125:-
-
cpe:2.3:h:watchguard:firebox_t145-w:-
-
cpe:2.3:h:watchguard:firebox_t145:-
-
cpe:2.3:h:watchguard:firebox_t15:-
-
cpe:2.3:h:watchguard:firebox_t185:-
-
cpe:2.3:h:watchguard:firebox_t20:-
-
cpe:2.3:h:watchguard:firebox_t25:-
-
cpe:2.3:h:watchguard:firebox_t35:-
-
cpe:2.3:h:watchguard:firebox_t40:-
-
cpe:2.3:h:watchguard:firebox_t45:-
-
cpe:2.3:h:watchguard:firebox_t55:-
-
cpe:2.3:h:watchguard:firebox_t70:-
-
cpe:2.3:h:watchguard:firebox_t80:-
-
cpe:2.3:h:watchguard:firebox_t85:-
-
cpe:2.3:h:watchguard:fireboxcloud:-
-
cpe:2.3:h:watchguard:fireboxv:-
-
cpe:2.3:o:watchguard:fireware:11.0.2
-
cpe:2.3:o:watchguard:fireware:11.1
-
cpe:2.3:o:watchguard:fireware:11.10
-
cpe:2.3:o:watchguard:fireware:11.10.1
-
cpe:2.3:o:watchguard:fireware:11.10.2
-
cpe:2.3:o:watchguard:fireware:11.10.3
-
cpe:2.3:o:watchguard:fireware:11.10.4
-
cpe:2.3:o:watchguard:fireware:11.10.5
-
cpe:2.3:o:watchguard:fireware:11.10.6
-
cpe:2.3:o:watchguard:fireware:11.10.7
-
cpe:2.3:o:watchguard:fireware:11.11
-
cpe:2.3:o:watchguard:fireware:11.12.4
-
cpe:2.3:o:watchguard:fireware:11.2.1
-
cpe:2.3:o:watchguard:fireware:11.2.3
-
cpe:2.3:o:watchguard:fireware:11.3
-
cpe:2.3:o:watchguard:fireware:11.3.6
-
cpe:2.3:o:watchguard:fireware:11.4
-
cpe:2.3:o:watchguard:fireware:11.4.2
-
cpe:2.3:o:watchguard:fireware:11.5.1
-
cpe:2.3:o:watchguard:fireware:11.5.3
-
cpe:2.3:o:watchguard:fireware:11.6
-
cpe:2.3:o:watchguard:fireware:11.6.1
-
cpe:2.3:o:watchguard:fireware:11.6.3
-
cpe:2.3:o:watchguard:fireware:11.6.5
-
cpe:2.3:o:watchguard:fireware:11.6.6
-
cpe:2.3:o:watchguard:fireware:11.7
-
cpe:2.3:o:watchguard:fireware:11.7.2
-
cpe:2.3:o:watchguard:fireware:11.7.3
-
cpe:2.3:o:watchguard:fireware:11.7.4
-
cpe:2.3:o:watchguard:fireware:11.8
-
cpe:2.3:o:watchguard:fireware:11.8.1
-
cpe:2.3:o:watchguard:fireware:11.8.3
-
cpe:2.3:o:watchguard:fireware:12.0.0
-
cpe:2.3:o:watchguard:fireware:12.1.3
-
cpe:2.3:o:watchguard:fireware:12.1.4
-
cpe:2.3:o:watchguard:fireware:12.11.4
-
cpe:2.3:o:watchguard:fireware:12.2.0
-
cpe:2.3:o:watchguard:fireware:12.5
-
cpe:2.3:o:watchguard:fireware:12.5.1
-
cpe:2.3:o:watchguard:fireware:12.5.10
-
cpe:2.3:o:watchguard:fireware:12.5.11
-
cpe:2.3:o:watchguard:fireware:12.5.12
-
cpe:2.3:o:watchguard:fireware:12.5.13
-
cpe:2.3:o:watchguard:fireware:12.5.2
-
cpe:2.3:o:watchguard:fireware:12.5.3
-
cpe:2.3:o:watchguard:fireware:12.5.4
-
cpe:2.3:o:watchguard:fireware:12.5.5
-
cpe:2.3:o:watchguard:fireware:12.5.6
-
cpe:2.3:o:watchguard:fireware:12.5.7
-
cpe:2.3:o:watchguard:fireware:12.5.8
-
cpe:2.3:o:watchguard:fireware:12.5.9
-
cpe:2.3:o:watchguard:fireware:12.6.1
-
cpe:2.3:o:watchguard:fireware:12.6.3
-
cpe:2.3:o:watchguard:fireware:12.6.4
-
cpe:2.3:o:watchguard:fireware:12.7.0
-
cpe:2.3:o:watchguard:fireware:12.7.1
-
cpe:2.3:o:watchguard:fireware:12.7.2
-
cpe:2.3:o:watchguard:fireware:12.8.0
-
cpe:2.3:o:watchguard:fireware:2025.1
-
cpe:2.3:o:watchguard:fireware:2025.1.1
-
cpe:2.3:o:watchguard:fireware:2025.1.2