CVE-2025-11838

216.73.217.22

· Published 04/12/2025 22:15 · Modified 16/12/2025 00:16

Labels: CVE-2025-11838 2025-12-04 5d1c2695-1a31-4499-88ae-e847036fd7e3 CVE-2025-11838 CWE-763

Essential information

Published: 04/12/2025 22:15
Modified: 16/12/2025 00:16
Author: —
Creator: —
CVSS: 8.7 HIGH (v3) 8.7 HIGH (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

A memory corruption vulnerability in WatchGuard Fireware OS may allow an unauthenticated attacker to trigger a Denial of Service (DoS) condition in the Mobile User VPN with IKEv2 and the Branch Office VPN using IKEv2 when configured with a dynamic gateway peer. This vulnerability affects Fireware OS 12.6.1 up to and including 12.11.4 and 2025.1 up to and including 2025.1.2.

NVD status

Status: Modified — CVE has been amended by a source (CVE Primary CNA or another CNA). Analysis data supplied by the NVD may be no longer be accurate due to these changes.
Source: 5d1c2695-1a31-4499-88ae-e847036fd7e3
NVD: View on NVD

Affected products (CPE)

Product	CPE
watchguard / fireware	`cpe:2.3:o:watchguard:fireware::::::::`
watchguard / firebox t115-w	`cpe:2.3:h:watchguard:firebox_t115-w:-:::::::*`
watchguard / firebox t125	`cpe:2.3:h:watchguard:firebox_t125:-:::::::*`
watchguard / firebox t125-w	`cpe:2.3:h:watchguard:firebox_t125-w:-:::::::*`
watchguard / firebox t145	`cpe:2.3:h:watchguard:firebox_t145:-:::::::*`
watchguard / firebox t145-w	`cpe:2.3:h:watchguard:firebox_t145-w:-:::::::*`
watchguard / firebox t185	`cpe:2.3:h:watchguard:firebox_t185:-:::::::*`
watchguard / fireware	`cpe:2.3:o:watchguard:fireware::::::::`
watchguard / firebox m270	`cpe:2.3:h:watchguard:firebox_m270:-:::::::*`
watchguard / firebox m290	`cpe:2.3:h:watchguard:firebox_m290:-:::::::*`
watchguard / firebox m370	`cpe:2.3:h:watchguard:firebox_m370:-:::::::*`
watchguard / firebox m390	`cpe:2.3:h:watchguard:firebox_m390:-:::::::*`
watchguard / firebox m440	`cpe:2.3:h:watchguard:firebox_m440:-:::::::*`
watchguard / firebox m4600	`cpe:2.3:h:watchguard:firebox_m4600:-:::::::*`
watchguard / firebox m470	`cpe:2.3:h:watchguard:firebox_m470:-:::::::*`
watchguard / firebox m4800	`cpe:2.3:h:watchguard:firebox_m4800:-:::::::*`
watchguard / firebox m5600	`cpe:2.3:h:watchguard:firebox_m5600:-:::::::*`
watchguard / firebox m570	`cpe:2.3:h:watchguard:firebox_m570:-:::::::*`
watchguard / firebox m5800	`cpe:2.3:h:watchguard:firebox_m5800:-:::::::*`
watchguard / firebox m590	`cpe:2.3:h:watchguard:firebox_m590:-:::::::*`
watchguard / firebox m670	`cpe:2.3:h:watchguard:firebox_m670:-:::::::*`
watchguard / firebox m690	`cpe:2.3:h:watchguard:firebox_m690:-:::::::*`
watchguard / firebox nv5	`cpe:2.3:h:watchguard:firebox_nv5:-:::::::*`
watchguard / firebox t20	`cpe:2.3:h:watchguard:firebox_t20:-:::::::*`
watchguard / firebox t25	`cpe:2.3:h:watchguard:firebox_t25:-:::::::*`
watchguard / firebox t40	`cpe:2.3:h:watchguard:firebox_t40:-:::::::*`
watchguard / firebox t45	`cpe:2.3:h:watchguard:firebox_t45:-:::::::*`
watchguard / firebox t55	`cpe:2.3:h:watchguard:firebox_t55:-:::::::*`
watchguard / firebox t70	`cpe:2.3:h:watchguard:firebox_t70:-:::::::*`
watchguard / firebox t80	`cpe:2.3:h:watchguard:firebox_t80:-:::::::*`
watchguard / firebox t85	`cpe:2.3:h:watchguard:firebox_t85:-:::::::*`
watchguard / fireboxcloud	`cpe:2.3:h:watchguard:fireboxcloud:-:::::::*`
watchguard / fireboxv	`cpe:2.3:h:watchguard:fireboxv:-:::::::*`