CVE-2025-1071 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2025-1071

Analyzed

More Info Official Page

Source-5d1c2695-1a31-4499-88ae-e847036fd7e3

Published At-14 Feb, 2025 | 14:15

Updated At-02 Mar, 2026 | 18:59

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS allows Stored XSS via the spamBlocker module. This vulnerability requires an authenticated administrator session to a locally managed Firebox.This issue affects Fireware OS: from 12.0 through 12.5.12+701324, from 12.6 through 12.11.

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	4.8	MEDIUM	CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary	3.1	4.8	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Type: Secondary

Version: 4.0

Base score: 4.8

Base severity: MEDIUM

Vector:

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Type: Primary

Version: 3.1

Base score: 4.8

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

CPE Matches

WatchGuard Technologies, Inc.

>>fireware>>Versions from 12.0.0(inclusive) to 12.11.1(exclusive)

cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m270>>*

cpe:2.3:h:watchguard:firebox_m270:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m290>>*

cpe:2.3:h:watchguard:firebox_m290:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m370>>*

cpe:2.3:h:watchguard:firebox_m370:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m390>>*

cpe:2.3:h:watchguard:firebox_m390:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m440>>*

cpe:2.3:h:watchguard:firebox_m440:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m4600>>*

cpe:2.3:h:watchguard:firebox_m4600:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m470>>*

cpe:2.3:h:watchguard:firebox_m470:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m4800>>*

cpe:2.3:h:watchguard:firebox_m4800:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m5600>>*

cpe:2.3:h:watchguard:firebox_m5600:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m570>>*

cpe:2.3:h:watchguard:firebox_m570:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m5800>>*

cpe:2.3:h:watchguard:firebox_m5800:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m590>>*

cpe:2.3:h:watchguard:firebox_m590:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m670>>*

cpe:2.3:h:watchguard:firebox_m670:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_m690>>*

cpe:2.3:h:watchguard:firebox_m690:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_nv5>>*

cpe:2.3:h:watchguard:firebox_nv5:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_t20>>*

cpe:2.3:h:watchguard:firebox_t20:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_t25>>*

cpe:2.3:h:watchguard:firebox_t25:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_t40>>*

cpe:2.3:h:watchguard:firebox_t40:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_t45>>*

cpe:2.3:h:watchguard:firebox_t45:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_t55>>*

cpe:2.3:h:watchguard:firebox_t55:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_t70>>*

cpe:2.3:h:watchguard:firebox_t70:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_t80>>*

cpe:2.3:h:watchguard:firebox_t80:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_t85>>*

cpe:2.3:h:watchguard:firebox_t85:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>fireboxcloud>>*

cpe:2.3:h:watchguard:fireboxcloud:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

cpe:2.3:h:watchguard:fireboxv:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>fireware>>Versions from 12.5(inclusive) to 12.5.13(exclusive)

cpe:2.3:o:watchguard:fireware:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_t15>>*

cpe:2.3:h:watchguard:firebox_t15:*:*:*:*:*:*:*:*

WatchGuard Technologies, Inc.

>>firebox_t35>>*

cpe:2.3:h:watchguard:firebox_t35:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-79	Secondary	5d1c2695-1a31-4499-88ae-e847036fd7e3

CWE ID: CWE-79

Type: Secondary

Source: 5d1c2695-1a31-4499-88ae-e847036fd7e3

References

Hyperlink	Source	Resource
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00001	5d1c2695-1a31-4499-88ae-e847036fd7e3	Vendor Advisory

Hyperlink: https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00001

Source: 5d1c2695-1a31-4499-88ae-e847036fd7e3

Resource:

Vendor Advisory