WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability
WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability
19 December 2025
WatchGuard has released fixes to address a critical security flaw in Fireware OS that it said has been exploited in real-world attacks.
Tracked as CVE-2025-14733 (CVSS score: 9.3), the vulnerability has been described as a case of out-of-bounds write affecting the iked process that could allow a remote unauthenticated attacker to execute arbitrary code.
"This vulnerability affects both the