Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

firebox_m295

Source -

NVD

CNA CVEs -

0

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

3
Related CVEsRelated VendorsRelated AssignersReports
3Vulnerabilities found
CVE-2026-3344
Assigner-WatchGuard Technologies, Inc.
ShareView Details
Assigner-WatchGuard Technologies, Inc.
CVSS Score-6.9||MEDIUM
EPSS-Not Assigned
Published-03 Mar, 2026 | 13:17
Updated-04 Mar, 2026 | 19:19
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
WatchGuard Firebox System Integrity Check Bypass

A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited persistence via a maliciously-crafted firmware update package.This issue affects Fireware OS 12.0 up to and including 12.11.7, 12.5.9 up to and including 12.5.16, and 2025.1 up to and including 2026.1.1.

Action-Not Available
Vendor-WatchGuard Technologies, Inc.
Product-firebox_nv5firebox_m4800firebox_t35firebox_m495firebox_m590firebox_t15firebox_t45firebox_t125firebox_t25firebox_m670firebox_m440firebox_t55firebox_t85firebox_t40firebox_m295firebox_m470firebox_m390firebox_m4600firebox_t70firebox_m690firebox_t115-wfirebox_m695firebox_t20firebox_t125-wfirebox_t145fireboxcloudfirewarefirebox_m395firebox_m5600firebox_m5800firebox_m270firebox_t185firebox_m595firebox_m290firebox_t80firebox_m370fireboxvfirebox_m570firebox_t145-wFireware OS
CWE ID-CWE-440
Expected Behavior Violation
CVE-2026-3343
Assigner-WatchGuard Technologies, Inc.
ShareView Details
Assigner-WatchGuard Technologies, Inc.
CVSS Score-5.1||MEDIUM
EPSS-Not Assigned
Published-03 Mar, 2026 | 13:17
Updated-04 Mar, 2026 | 19:34
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
WatchGuard Firebox Reflected Cross-Site-Scripting (XSS) Vulnerability in Fireware Web UI

A reflected cross-site scripting (XSS) vulnerability in the Fireware OS Web UI enabled execution of malicious JavaScript in the context of an authenticated management user's browser when they click on a specially crafted link. This vulnerability affects Fireware OS 12.7 up to and including 12.11.7 and 2025.1 up to and including 2026.1.1.

Action-Not Available
Vendor-WatchGuard Technologies, Inc.
Product-firebox_nv5firebox_m4800firebox_m495firebox_m590firebox_t45firebox_t125firebox_t25firebox_m670firebox_m440firebox_t55firebox_t85firebox_t40firebox_m295firebox_m470firebox_m390firebox_m4600firebox_t70firebox_m690firebox_t115-wfirebox_m695firebox_t20firebox_t125-wfirebox_t145fireboxcloudfirewarefirebox_m395firebox_m5600firebox_m5800firebox_m270firebox_t185firebox_m595firebox_m290firebox_t80firebox_m370fireboxvfirebox_m570firebox_t145-wFireware OS
CWE ID-CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2026-3342
Assigner-WatchGuard Technologies, Inc.
ShareView Details
Assigner-WatchGuard Technologies, Inc.
CVSS Score-8.6||HIGH
EPSS-Not Assigned
Published-03 Mar, 2026 | 13:17
Updated-04 Mar, 2026 | 19:42
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
WatchGuard Firebox Out of Bounds Write Vulnerability

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow an authenticated privileged administrator to execute arbitrary code with root permissions via an exposed management interface. This vulnerability affects Fireware OS 11.9 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.7 and 2025.1 up to and including 2026.1.1.

Action-Not Available
Vendor-WatchGuard Technologies, Inc.
Product-firebox_nv5firebox_t35firebox_m495firebox_m4800firebox_m590firebox_t15firebox_t45firebox_t125firebox_t25firebox_m670firebox_m440firebox_t55firebox_t85firebox_m295firebox_t40firebox_m470firebox_m390firebox_m4600firebox_t70firebox_m690firebox_t115-wfirebox_m695firebox_t125-wfirebox_t145firebox_t20fireboxcloudfirebox_m395firewarefirebox_m5600firebox_m270firebox_m5800firebox_t185firebox_m595firebox_m290firebox_t80firebox_m370fireboxvfirebox_m570firebox_t145-wFireware OS
CWE ID-CWE-787
Out-of-bounds Write