- WatchGuard fixes a critical RCE vulnerability (CVE-2025‑14733) in the commonly used Firebox firewall.
- CISA added it to KEV. Federal agencies have until December 26 to fix it or stop using it.
- Solutions include disabling BoVPN dynamic peering and tightening firewall policies until the fix is implemented.
WatchGuard has patched a zero-severity vulnerability in the Firefox Firewall and urges all users to apply the patch immediately.
Firewalls running Windows OS 11.x and later, 12.x and later, 2025.1 to 2025.1.3 (and 2025.1.3 inclusive) are vulnerable to an out-of-bounds write (RCE) vulnerability, which could allow an unauthenticated attacker to remotely execute arbitrary code, the company said in a new security advisory. This vulnerability affects both mobile user VPNs that use IKEv2 and subnet VPNs that use IKEv2 when configured with dynamic gateway nodes.
This vulnerability is currently tracked as CVE-2025-14733 and has a severity rating of 9.3/10 (Severe). WatchGuard said it sees active attackers “actively trying to exploit” the vulnerability, but did not specify which groups are exploiting it or who they are targeting.
CISA added bug to KEV
If you are unable to apply the solution immediately, you can resolve the issue by disabling BoVPN dynamic peering, adding a new firewall policy, and disabling the default system policy that handles VPN traffic.
At the same time, the US Cybersecurity and Infrastructure Security Agency (CISA) added the RCE vulnerability to the List of Known Exploitable Vulnerabilities (KEVs) and gave all Federal Civil Service Bureau (FCEB) agencies just one week to patch the vulnerable firewalls or shut them down entirely.
Entry was added on 26 December, 19 December.
A few months ago, WatchGuard fixed a similar RCE bug in the Firebox firewall. computer spying This was informed. In October 2025, Internet watchdog Shadowserver announced that more than 75,000 cases had been identified, mostly in North America and Europe. A few weeks later, this vulnerability was also added to KEV CISA.
WatchGuard Technologies is a global cybersecurity company serving more than 250,000 SMBs, MSPs, and other customers worldwide.
For computer spying
