WatchGuard has released security updates to fix a critical vulnerability (CVE-2025-9242) affecting Firebox firewalls using Fireware OS, especially impacting IKEv2 VPN configurations. Removing the flaw requires users to upgrade to patched versions or apply temporary workarounds to prevent remote code execution. #CVE20259242 #FireboxVulnerability
Keypoints
- WatchGuardβs Firebox firewalls are affected by a severe out-of-bounds write vulnerability.
- The flaw resides in the iked process of Fireware OS, affecting IKEv2 VPN setups.
- Exploitation allows remote attackers to execute arbitrary code without authentication.
- Users are urged to update to latest patched versions or apply temporary workarounds.
- The vulnerability has a CVSS score of 9.3, representing a high security risk.
Read More: https://thecyberexpress.com/cve-2025-9242-vulnerability/