WatchGuard Firebox T15
Approved changes feed: RSS · Atom
cpe:2.3:h:watchguard:firebox_t15:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Watchguard (ec468727-86da-5bb0-9483-b62749e25478) |
|---|---|
| Product | Firebox T15 (e48ddf5c-8b92-54fa-9776-fc4045c46493) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-1547 |
not_vulnerable | 2026-06-03 14:59:05.772257 |
WatchGuard Firebox Authenticated Stack Overflow in Certificate Request Command
A stack-based buffer overflow vulnerability [CWE-121] in WatchGuard Fireware OS's certificate request command could allow an authenticated privileged user to execute arbitrary code via specially crafted CLI commands.This issue affects Fireware OS: from 12.0 through 12.5.12+701324, from 12.6 through 12.11.2.
Published: 2025-12-04T22:11:09.164Z
Updated: 2026-02-26T16:57:31.557Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-1545 |
not_vulnerable | 2026-06-03 14:59:05.764304 |
WatchGuard Firebox XPath Injection Vulnerability in Web CGI
An XPath Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to retrieve sensitive information from the Firebox configuration through an exposed authentication or management web interface. This vulnerability only affects Firebox systems that have at least one authentication hotspot configured.This issue affects Fireware OS 11.11 up to and including 11.12.4+541730, 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Published: 2025-12-04T21:48:27.311Z
Updated: 2025-12-05T15:44:01.830Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13939 |
not_vulnerable | 2026-06-03 14:58:54.060031 |
WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Gateway Wireless Controller
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (Gateway Wireless Controller module) allows Stored XSS.This issue affects Fireware OS 11.7.2 up to and including 11.12.4+541730, 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Published: 2025-12-04T21:47:37.793Z
Updated: 2025-12-05T15:45:32.780Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13938 |
not_vulnerable | 2026-06-03 14:58:54.048311 |
WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Autotask Technology Integration Configuration
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (Autotask Technology Integration module) allows Stored XSS.This issue affects Fireware OS 12.4 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Published: 2025-12-04T21:47:29.650Z
Updated: 2025-12-05T15:45:58.220Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13937 |
not_vulnerable | 2026-06-03 14:58:54.045818 |
WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in ConnectWise Technology Integration Configuration
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (ConnectWise Technology Integration module) allows Stored XSS.This issue affects Fireware OS 12.4 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Published: 2025-12-04T21:47:19.995Z
Updated: 2025-12-05T16:19:15.961Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13936 |
not_vulnerable | 2026-06-03 14:58:54.042675 |
WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Tigerpaw Technology Integration Configuration
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (Tigerpaw Technology Integration module) allows Stored XSS.This issue affects Fireware OS 12.4 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Published: 2025-12-04T21:45:51.774Z
Updated: 2025-12-05T16:19:53.325Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-12196 |
not_vulnerable | 2026-06-03 14:58:43.961015 |
WatchGuard Firebox Authenticated Out of Bounds Write in Management CLI Ping Command
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via a specially crafted CLI command.This vulnerability affects Fireware OS 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Published: 2025-12-04T21:45:29.261Z
Updated: 2026-02-26T16:57:32.550Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-12195 |
not_vulnerable | 2026-06-03 14:58:43.958127 |
WatchGuard Firebox Authenticated Out of Bounds Write in Management CLI IPSec Configuration
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via specially crafted IPSec configuration CLI commands.This vulnerability affects Fireware OS 11.0 up to and including 11.12.4+541730, 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Published: 2025-12-04T21:43:57.162Z
Updated: 2026-02-26T16:57:32.996Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-12026 |
not_vulnerable | 2026-06-03 14:58:43.669896 |
WatchGuard Firebox Authenticated Out of Bounds Write in certd
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS’s certificate request command could allow an authenticated privileged user to execute arbitrary code via specially crafted CLI commands.This vulnerability affects Fireware OS 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.
Published: 2025-12-04T21:43:46.266Z
Updated: 2026-02-26T16:57:33.562Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-5974 |
not_vulnerable | 2026-06-03 14:57:54.909462 |
Firebox Authenticated Buffer Overflow Vulnerability
HIGH (7.2)
A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall.
This issue affects Fireware OS: from 11.9.6 through 12.10.3.
Published: 2024-07-09T02:24:47.924Z
Updated: 2025-01-13T17:56:13.317Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-25361 |
not_vulnerable | 2026-06-03 14:46:37.627797 |
Details available
WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to delete arbitrary files from a limited set of directories on the system. This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before 12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2.
Published: 2022-06-07T13:26:39.000Z
Updated: 2024-08-03T04:36:06.903Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.