MEDIUM✓ PATCH🇵🇱 Wersja polska

CVE-2025-13940

CVSS 6.7v4.0pub. 2025-12-04upd. 2025-12-10

An Expected Behavior Violation [CWE-440] vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS boot time system integrity check and prevent the Firebox from shutting down in the event of a system integrity check failure. The on-demand system integrity check in the Fireware Web UI will correctly show a failed system integrity check message in the event of a failure.This issue affects Fireware OS: from 12.8.1 through 12.11.4, from 2025.1 through 2025.1.2.

CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Watchguard Fireboxcloud

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M270

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M290

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M370

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M390

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M440

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M4600

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M470

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M4800

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M5600

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M570

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M5800

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M590

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M670

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox M690

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox Nv5

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T115 W

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T125

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T125 W

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T145

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T145 W

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T185

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T20

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T25

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T40

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T45

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T55

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T70

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T80

    HW
    Watchguard
    wszystkie wersje
  • Watchguard Firebox T85

    HW
    Watchguard
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2025-14733CRITICAL9.3⚠ KEVPL ✓ten sam produkt

RCE bez uwierzytelnienia w WatchGuard Fireware OS – podatność IKEv2 VPN

CVE-2025-9242CRITICAL9.3⚠ KEVPL ✓ten sam produkt

RCE przez Out-of-bounds Write w WatchGuard Fireware OS (IKEv2 VPN)

CVE-2022-26318CRITICAL9.8⚠ KEVten sam produkt

On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code, aka FBX-22786. T...

CVE-2022-31789CRITICAL9.8ten sam produkt

An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote attacker to trig...

CVE-2022-25361CRITICAL9.1ten sam produkt

WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker to delete arbitrary files from ...