CVE-2025-4106 – WatchGuard Firebox leftover debug code vulnerability

CVE ID : CVE-2025-4106

Published : Oct. 24, 2025, 10:15 p.m. | 28 minutes ago

Description : An authenticated admin user with access to both the management WebUI and command line interface on a Firebox can enable a diagnostic debug shell by uploading a platform and version-specific diagnostic package and executing a leftover diagnostic command.

This issue affects Fireware OS: from 12.0 before 12.11.2.

Severity: 8.9 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…