CyberSecurityBoard
Sponsor Register Login

WatchGuard warns of critical vulnerability in Firebox firewalls

WatchGuard has issued a critical security warning regarding a severe vulnerability found in its Firebox firewall devices. This flaw could potentially allow attackers to execute arbitrary code remotely, posing a significant risk to organizations relying on these firewalls for network security. The vulnerability affects multiple Firebox models and requires immediate attention to prevent exploitation. WatchGuard has released patches and advises all users to update their devices promptly to mitigate the risk. This incident underscores the importance of timely patch management and vigilance in cybersecurity practices to protect critical infrastructure from emerging threats. Firewalls are a crucial line of defense, and vulnerabilities like this highlight the ongoing challenges in maintaining secure network perimeters. Organizations should also consider additional layers of security and continuous monitoring to detect and respond to potential intrusions effectively.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Thu, 18 Sep 2025 08:20:15 +0000


Cyber News related to WatchGuard warns of critical vulnerability in Firebox firewalls

8 Common Types of Firewalls Explained & When to Use Each - The eight types of deployable firewalls include traditional network firewalls, unified threat management, next-generation firewalls, web application firewalls, database firewalls, cloud firewalls, container firewalls, and firewalls-as-a-service. ...
2 years ago Esecurityplanet.com
WatchGuard Firebox Firewall Vulnerability Exposes Networks to Risk - A critical vulnerability has been discovered in WatchGuard Firebox firewalls, posing significant risks to network security. This flaw allows attackers to potentially bypass authentication mechanisms and gain unauthorized access to sensitive network ...
2 months ago Cybersecuritynews.com CVE-2024-12345
WatchGuard warns of critical vulnerability in Firebox firewalls - WatchGuard has issued a critical security warning regarding a severe vulnerability found in its Firebox firewall devices. This flaw could potentially allow attackers to execute arbitrary code remotely, posing a significant risk to organizations ...
4 months ago Bleepingcomputer.com CVE-2023-28252
CISA warns of WatchGuard firewall flaw exploited in attacks - The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding a critical vulnerability found in WatchGuard Firebox firewall appliances. This flaw, identified as CVE-2023-28205, allows attackers to execute arbitrary code ...
2 months ago Bleepingcomputer.com CVE-2023-28205
Research Shows 163% ROI with Palo Alto Networks Software Firewalls - Good news is here for cloud and network security professionals who need proven, cost-effective solutions that substantially reduce downtime and breaches across a range of cloud and virtualized environments. Palo Alto Networks software firewalls not ...
2 years ago Paloaltonetworks.com
CVE-2017-8056 - WatchGuard Fireware v11.12.1 and earlier mishandles requests referring to an XML External Entity (XXE), in the XML-RPC agent. This causes the Firebox wgagent process to crash. This process crash ends all authenticated sessions to the Firebox, ...
8 years ago
Over 178K SonicWall firewalls vulnerable to DoS, potential RCE attacks - Security researchers have found over 178,000 SonicWall next-generation firewalls with the management interface exposed online are vulnerable to denial-of-service and potential remote code execution attacks. These appliances are affected by two DoS ...
2 years ago Bleepingcomputer.com CVE-2022-22274 CVE-2023-0656
9 Best Next-Generation Firewall Solutions for 2023 - Next-generation firewalls are network security solutions that go beyond the traditional port/protocol inspection by incorporating application-level inspection, intrusion prevention, and external threat intelligence. As the third generation in ...
2 years ago Esecurityplanet.com
What is Firewall as a Service? - A firewall serves as a barrier to unapproved network traffic. A firewall creates a remotely delivered cybersecurity solution licensed on a subscription basis as a Service or FWaaS. Companies can streamline their IT infrastructure using Perimeter81 ...
2 years ago Cybersecuritynews.com
What Is a Host-Based Firewall? Definition & When to Use - Organizations often use host-based firewalls when specific network applications or services require open communication channels that aren't allowed under default firewall settings. To install a host-based firewall across all endpoints, choose your ...
1 year ago Esecurityplanet.com
What Is a Next-Generation Firewall? - A next generation firewall performs deep packet inspection to check the contents of the data flowing through the firewall. Unlike more basic firewalls that only check the header of data packets, NGFWs examine and evaluate the payload data within the ...
1 year ago Esecurityplanet.com
WatchGuard Firebox Vulnerability Actively Exploited in the Wild - A critical vulnerability in WatchGuard Firebox appliances has been actively exploited by threat actors, raising significant security concerns for organizations using these devices. The flaw allows attackers to execute arbitrary code remotely, ...
2 months ago Cybersecuritynews.com CVE-2023-28252
WatchGuard VPN Vulnerability Exposes Enterprises to Remote Attacks - A critical vulnerability has been discovered in WatchGuard's VPN appliances, exposing enterprises to potential remote attacks. This flaw allows attackers to bypass authentication mechanisms, potentially gaining unauthorized access to corporate ...
3 months ago Cybersecuritynews.com CVE-2023-2868
Juniper warns of critical RCE bug in its firewalls and switches - Juniper Networks has released security updates to fix a critical pre-auth remote code execution vulnerability in its SRX Series firewalls and EX Series switches. Found in the devices' J-Web configuration interfaces and tracked as CVE-2024-21591, this ...
2 years ago Bleepingcomputer.com CVE-2024-21591 CVE-2023-36844 CVE-2023-36845 CVE-2023-36846 CVE-2023-36847
Exploit released for Palo Alto PAN-OS bug used in attacks, patch now - Exploit code is now available for a maximum severity and actively exploited vulnerability in Palo Alto Networks' PAN-OS firewall software. Tracked as CVE-2024-3400, this security flaw can let unauthenticated threat actors execute arbitrary code as ...
1 year ago Bleepingcomputer.com CVE-2024-3400 CVE-2024-34000
WatchGuard Fireware OS Flaw Exposes Devices to Remote Attacks - A critical vulnerability has been identified in WatchGuard's Fireware OS, the operating system used in its network security appliances. This flaw allows remote attackers to execute arbitrary code, potentially compromising the affected devices and the ...
3 months ago Infosecurity-magazine.com CVE-2024-12345
Top Ten FirewallasaService Companies - Firewall as a Service (FWaaS) is a way of providing firewall functionality in the cloud, rather than on the traditional network perimeter. This is beneficial for businesses that have migrated their data and applications to the cloud, as it allows ...
2 years ago Cybersecuritynews.com
Citrix warns of new Netscaler zero-days exploited in attacks - Citrix urged customers on Tuesday to immediately patch Netscaler ADC and Gateway appliances exposed online against two actively exploited zero-day vulnerabilities. The two zero-days impact the Netscaler management interface and expose unpatched ...
2 years ago Bleepingcomputer.com CVE-2023-4966
Weekly Vulnerability Recap 1/29/24: Apple, Apache, & VMware - In this week's urgent updates, Apple and VMware issued updates for zero-day flaws currently under attack, and researchers detected a rise in attacks on unpatched Apache and Atlassian Confluence servers. The release of proof-of-concept code starts the ...
2 years ago Esecurityplanet.com CVE-2024-23222 CVE-2023-22527 CVE-2024-0204 CVE-2023-6330 CVE-2023-6331 CVE-2023-6332
Russian Hackers Likely Not Involved in Attacks on Denmark's Critical Infrastructure - Russian state-sponsored APT actor Sandworm might have not been involved in last year's massive attack campaign against Denmark's critical infrastructure, cybersecurity firm Forescout says. The assaults occurred in May 2023 and resulted in the ...
2 years ago Securityweek.com CVE-2023-28771 CVE-2023-33009 CVE-2023-33010 CVE-2023-27881
CVE-2025-67545 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FirePlugins FireBox firebox allows Stored XSS.This issue affects FireBox: from n/a through <= 3.1.0-free. ...
1 month ago
CISA pushes federal agencies to patch Citrix RCE within a week - Today, CISA ordered U.S. federal agencies to secure their systems against three recently patched Citrix NetScaler and Google Chrome zero-days actively exploited in attacks, pushing for a Citrix RCE bug to be patched within a week. Citrix urged ...
2 years ago Bleepingcomputer.com CVE-2023-6548 CVE-2023-6549 CVE-2024-0519
Over 75,000 WatchGuard security devices vulnerable to critical RCE - A critical remote code execution (RCE) vulnerability has been discovered in over 75,000 WatchGuard security devices, exposing them to potential cyberattacks. This flaw allows attackers to execute arbitrary code remotely, potentially compromising the ...
3 months ago Bleepingcomputer.com CVE-2023-35078

Latest Cyber News


    Cyber Trends (last 7 days)


    Trending Cyber News (last 7 days)