Vulnerability Details CVE-2025-13940
An Expected Behavior Violation [CWE-440] vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS boot time system integrity check and prevent the Firebox from shutting down in the event of a system integrity check failure. The on-demand system integrity check in the Fireware Web UI will correctly show a failed system integrity check message in the event of a failure.This issue affects Fireware OS: from 12.8.1 through 12.11.4, from 2025.1 through 2025.1.2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.5%
CVSS Severity
CVSS v3 Score 5.5
Products affected by CVE-2025-13940
-
cpe:2.3:h:watchguard:firebox_m270:-
-
cpe:2.3:h:watchguard:firebox_m290:-
-
cpe:2.3:h:watchguard:firebox_m370:-
-
cpe:2.3:h:watchguard:firebox_m390:-
-
cpe:2.3:h:watchguard:firebox_m440:-
-
cpe:2.3:h:watchguard:firebox_m4600:-
-
cpe:2.3:h:watchguard:firebox_m470:-
-
cpe:2.3:h:watchguard:firebox_m4800:-
-
cpe:2.3:h:watchguard:firebox_m5600:-
-
cpe:2.3:h:watchguard:firebox_m570:-
-
cpe:2.3:h:watchguard:firebox_m5800:-
-
cpe:2.3:h:watchguard:firebox_m590:-
-
cpe:2.3:h:watchguard:firebox_m670:-
-
cpe:2.3:h:watchguard:firebox_m690:-
-
cpe:2.3:h:watchguard:firebox_nv5:-
-
cpe:2.3:h:watchguard:firebox_t115-w:-
-
cpe:2.3:h:watchguard:firebox_t125-w:-
-
cpe:2.3:h:watchguard:firebox_t125:-
-
cpe:2.3:h:watchguard:firebox_t145-w:-
-
cpe:2.3:h:watchguard:firebox_t145:-
-
cpe:2.3:h:watchguard:firebox_t185:-
-
cpe:2.3:h:watchguard:firebox_t20:-
-
cpe:2.3:h:watchguard:firebox_t25:-
-
cpe:2.3:h:watchguard:firebox_t40:-
-
cpe:2.3:h:watchguard:firebox_t45:-
-
cpe:2.3:h:watchguard:firebox_t55:-
-
cpe:2.3:h:watchguard:firebox_t70:-
-
cpe:2.3:h:watchguard:firebox_t80:-
-
cpe:2.3:h:watchguard:firebox_t85:-
-
cpe:2.3:h:watchguard:fireboxcloud:-
-
cpe:2.3:h:watchguard:fireboxv:-
-
cpe:2.3:o:watchguard:fireware:12.11.4
-
cpe:2.3:o:watchguard:fireware:2025.1
-
cpe:2.3:o:watchguard:fireware:2025.1.1
-
cpe:2.3:o:watchguard:fireware:2025.1.2