216.73.216.133

CVE-2026-13728

· Published 03/07/2026 02:16 · Author: The MITRE Corporation

Labels: CVE-2026-13728

Essential information

Published
03/07/2026 02:16
Modified
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
5.9 MEDIUM (v4.0)
CISA KEV
No
CWE
CWE-798
CVSS vector

CVSS metrics

Description

In exception circumstances, WatchGuard Fireware OS on a FireCluster may use a hard-coded encryption key to encrypt saved credentials for Access Portal resources. This vulnerability affects Fireware OS 12.1 up to and including 12.12 and 2025.1 up to and including 2026.2. This vulnerability does not affect devices that do not support the Access Portal feature or standalone Fireboxes not deployed in a FireCluster.

NVD status

NVD
View on NVD