CVE-2025-14733
CRITICAL CISA KEVDescription
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to execute arbitrary code. This vulnerability affects both the Mobile User VPN with IKEv2 and the Branch Office VPN using IKEv2 when configured with a dynamic gateway peer.This vulnerability affects Fireware OS 11.10.2 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.5 and 2025.1 up to and including 2025.1.3.
Is your site exposed to CVE-2025-14733?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild.
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| watchguard | fireware |
| watchguard | firebox_t15 |
| watchguard | firebox_t35 |
| watchguard | fireware |
| watchguard | firebox_m270 |
| watchguard | firebox_m290 |
| watchguard | firebox_m370 |
| watchguard | firebox_m390 |
| watchguard | firebox_m440 |
| watchguard | firebox_m4600 |
| watchguard | firebox_m470 |
| watchguard | firebox_m4800 |
| watchguard | firebox_m5600 |
| watchguard | firebox_m570 |
| watchguard | firebox_m5800 |
| watchguard | firebox_m590 |
| watchguard | firebox_m670 |
| watchguard | firebox_m690 |
| watchguard | firebox_nv5 |
| watchguard | firebox_t20 |
| watchguard | firebox_t25 |
| watchguard | firebox_t40 |
| watchguard | firebox_t45 |
| watchguard | firebox_t55 |
| watchguard | firebox_t70 |
| watchguard | firebox_t80 |
| watchguard | firebox_t85 |
| watchguard | fireboxcloud |
| watchguard | fireboxv |
| watchguard | fireware |
| watchguard | firebox_t115-w |
| watchguard | firebox_t125 |
| watchguard | firebox_t125-w |
| watchguard | firebox_t145 |
| watchguard | firebox_t145-w |
| watchguard | firebox_t185 |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-14733? +
How severe is CVE-2025-14733? +
What products are affected by CVE-2025-14733? +
How do I check if I'm vulnerable to CVE-2025-14733? +
Related Vulnerabilities
LibreOffice Calc can import tracked changes from a spreadsheet document. A heap buffer overflow existed when a document reused the …
LibreOffice can import presentations in the legacy binary PPT format. A stack buffer overflow existed when importing a colour-replacement record. …
A heap use-after-free existed when importing the blank-width characters of an ODF number format. A position value read from the …
LibreOffice can import drawings in the DXF format used by CAD software. A heap buffer overflow existed when importing a …
The illumos SCTP inbound path performs association lookup for INIT ACK chunks without adequately validating the address parameters carried in …
Out-of-bounds write vulnerability in Legion of the Bouncy Castle Inc. BC-LTS bcprov-lts8on on ARM allows Overflow Buffers. This vulnerability is …