Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

CISA orders federal agencies to secure WatchGuard Firebox devices

Public Sector Action
First reported
Last updated
Happening score
H score 42
1 unique sources, 2 articles

Summary

Hide ▲

CISA ordered federal agencies to secure WatchGuard Firebox firewalls after tagging CVE-2025-14733 as actively exploited in the wild, raising urgency for exposed federal systems. The directive matters because the flaw can enable remote code execution on unpatched devices. The action centers on federal agencies and the risk of ongoing attacks against vulnerable firewalls.

Related Happenings

CISA KEV listing and FCEB firewall directive for CVE-2026-0300

Public Sector Action
First: 07.05.2026 13:57 Last: 07.05.2026 13:57 Sources 1

About this happening: **CISA** added **CVE-2026-0300** to the **KEV Catalog** and ordered **FCEB agencies** to secure vulnerable firewalls by **May 9, 2026**. The federal directive makes the exploited...

Open Happening

CISA KEV directive for CVE-2026-20133

Public Sector Action
First: 21.04.2026 15:30 Last: 21.04.2026 15:30 Sources 1

About this happening: On **Monday, April 21, 2026**, **CISA** added **CVE-2026-20133** to the **KEV Catalog** and ordered **FCEB agencies** to secure their networks by **Friday, April 24**. The directi...

Open Happening

CISA KEV listing and FCEB patch order for Ivanti EPMM

Public Sector Action
First: 08.04.2026 21:15 Last: 08.04.2026 21:15 Sources 1

About this happening: **CISA** added **CVE-2026-1340** to the **KEV Catalog** and ordered **FCEB agencies** to patch **Ivanti Endpoint Manager Mobile (EPMM)** by **Saturday midnight, April 11**, forcin...

Open Happening

CISA KEV order for CVE-2026-3055 on Citrix appliances

Public Sector Action
First: 31.03.2026 10:05 Last: 31.03.2026 10:05 Sources 1

About this happening: CISA added **CVE-2026-3055** to the **KEV Catalog** and ordered **FCEB agencies** to secure **Citrix NetScaler** appliances by **Thursday, April 2**, turning an **actively exploit...

Open Happening

CISA order to secure BIG-IP APM

Public Sector Action
First: 30.03.2026 13:59 Last: 30.03.2026 13:59 Sources 1

About this happening: **CISA** added **CVE-2025-53521** to its actively exploited list and ordered **federal agencies** to secure **BIG-IP APM** systems by **midnight on Monday, March 30, 2026**, escal...

Open Happening

Timeline

  1. 19.12.2025 12:25 2 articles · 5mo ago

    CISA orders secure handling of WatchGuard Firebox devices

    Legal Policy Action Update

    WatchGuard warned customers to patch CVE-2025-14733, a critical out-of-bounds write in Firebox firewalls that can let unauthenticated attackers execute code remotely on affected Fireware OS 11.x and later, 12.x or later, and 2025.1 builds, particularly when IKEv2 VPN or BOVPN configurations are involved; the company said it had observed active exploitation in the wild, published indicators of compromise, advised rotating locally stored secrets on compromised appliances, and CISA tagged the issue as actively exploited in the wild while ordering federal agencies to secure their Firebox firewalls.

    Show sources
    Open in new tab