Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Fireware OS out-of-bounds write security flaw (CVE-2025-14733)

Vulnerability
First reported
Last updated
Happening score
H score 43
2 unique sources, 2 articles

Summary

Hide ▲

WatchGuard Fireware OS contains CVE-2025-14733, an out-of-bounds write in the iked process that creates remote unauthenticated code execution risk for IKEv2 VPN deployments. WatchGuard said the flaw is actively exploited in the wild, making exposed Firebox systems especially urgent to patch. Fixed builds are available in 2025.1.4, 12.11.6, 12.5.15, and 12.3.1_Update4 (B728352), while some 11.x releases are End-of-Life.

Related Happenings

Cloud Software Group NetScaler urgent remediation advisory

Advisory/Mitigation
First: 25.03.2026 17:52 Last: 25.03.2026 17:52 Sources 1

About this happening: **Cloud Software Group** issued urgent remediation guidance for **NetScaler ADC** and **NetScaler Gateway**, telling affected customers to install updated versions as soon as poss...

Open Happening

CISA KEV listing for Wing FTP CVE-2025-47813

Public Sector Action
First: 17.03.2026 07:23 Last: 17.03.2026 07:23 Sources 1

About this happening: CISA added **CVE-2025-47813** in **Wing FTP Server** to the **KEV catalog** after evidence of **active exploitation**, putting the flaw under formal government tracking. The listi...

Open Happening

CISA KEV remediation deadline for SolarWinds WHD CVE-2025-40551

Public Sector Action
First: 04.02.2026 07:50 Last: 04.02.2026 07:50 Sources 1

About this happening: **CISA** added **CVE-2025-40551** in **SolarWinds Web Help Desk** to the **KEV catalog** and imposed **federal remediation deadlines**, turning a newly exploited flaw into a compl...

Open Happening

CISA orders federal agencies to secure WatchGuard Firebox devices

Public Sector Action
First: 19.12.2025 12:25 Last: 19.12.2025 12:25 Sources 1

How related: One day after WatchGuard released patches, CISA added CVE-2025-14733 to its Known Exploited Vulnerabilities (KEV) Catalog.

About this happening: **CISA** ordered federal agencies to secure **WatchGuard Firebox** firewalls after tagging **CVE-2025-14733** as **actively exploited in the wild**, raising urgency for exposed fe...

Open Happening

CISA adds WatchGuard Fireware CVE-2025-9242 to KEV catalog

Public Sector Action
First: 13.11.2025 09:23 Last: 13.11.2025 09:23 Sources 1

About this happening: CISA **added** **CVE-2025-9242** in **WatchGuard Fireware** to the **KEV catalog**, signaling **active exploitation** and forcing remediation prioritization. The flaw is an **out-...

Open Happening

Timeline

  1. 19.12.2025 13:23 2 articles · 5mo ago

    WatchGuard discloses active exploitation of Fireware OS flaw

    Initial Disclosure

    WatchGuard released fixes for CVE-2025-14733 in Fireware OS after confirming real-world exploitation of an out-of-bounds write in the iked process that can let a remote unauthenticated attacker execute arbitrary code on Firebox devices using IKEv2 VPN configurations. The advisory lists attack-source IPs 45.95.19[.]50, 51.15.17[.]89, 172.93.107[.]67, and 199.247.7[.]82, shares indicators of compromise including an oversized CERT payload, a certificate chain longer than 8, iked hangs, and Firebox fault reports, and points administrators to fixed releases 2025.1.4, 12.11.6, 12.5.15, and 12.3.1_Update4 (B728352) as well as temporary branch office VPN mitigations.

    Show sources
    Open in new tab