1. Home
  2. CVE Database
  3. CVE-2025-1545
HIGH · 7.5

CVE-2025-1545

An XPath Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to retrieve sensitive information from the Firebox configuration through an exposed authenticatio...

Vulnerability Description

An XPath Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to retrieve sensitive information from the Firebox configuration through an exposed authentication or management web interface. This vulnerability only affects Firebox systems that have at least one authentication hotspot configured.This issue affects Fireware OS 11.11 up to and including 11.12.4+541730, 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
WatchguardFireware>= 2025.1, < 2025.1.3
WatchguardFirebox T115-W-
WatchguardFirebox T125-
WatchguardFirebox T125-W-
WatchguardFirebox T145-
WatchguardFirebox T145-W-
WatchguardFirebox T185-
WatchguardFirebox M270-
WatchguardFirebox M290-
WatchguardFirebox M370-
WatchguardFirebox M390-
WatchguardFirebox M440-
WatchguardFirebox M4600-
WatchguardFirebox M470-
WatchguardFirebox M4800-
WatchguardFirebox M5600-
WatchguardFirebox M570-
WatchguardFirebox M5800-
WatchguardFirebox M590-
WatchguardFirebox M670-

Related Weaknesses (CWE)

CWE-91

References

FAQ

What is CVE-2025-1545?

CVE-2025-1545 is a vulnerability with a CVSS score of 7.5 (HIGH). An XPath Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to retrieve sensitive information from the Firebox configuration through an exposed authenticatio...

How severe is CVE-2025-1545?

CVE-2025-1545 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-1545?

Check the references section above for vendor advisories and patch information. Affected products include: Watchguard Fireware, Watchguard Firebox T115-W, Watchguard Firebox T125, Watchguard Firebox T125-W, Watchguard Firebox T145.