Vulnerability Description
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow an authenticated privileged administrator to execute arbitrary code with root permissions via an exposed management interface. This vulnerability affects Fireware OS 11.9 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.7 and 2025.1 up to and including 2026.1.1.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Watchguard | Fireware | >= 12.5, < 12.5.17 |
| Watchguard | Firebox T15 | - |
| Watchguard | Firebox T35 | - |
| Watchguard | Firebox M295 | - |
| Watchguard | Firebox M395 | - |
| Watchguard | Firebox M495 | - |
| Watchguard | Firebox M595 | - |
| Watchguard | Firebox M695 | - |
| Watchguard | Firebox T115-W | - |
| Watchguard | Firebox T125 | - |
| Watchguard | Firebox T125-W | - |
| Watchguard | Firebox T145 | - |
| Watchguard | Firebox T145-W | - |
| Watchguard | Firebox T185 | - |
| Watchguard | Firebox M270 | - |
| Watchguard | Firebox M290 | - |
| Watchguard | Firebox M370 | - |
| Watchguard | Firebox M390 | - |
| Watchguard | Firebox M440 | - |
| Watchguard | Firebox M4600 | - |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2026-3342?
CVE-2026-3342 is a vulnerability with a CVSS score of 7.2 (HIGH). An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow an authenticated privileged administrator to execute arbitrary code with root permissions via an exposed management interface. ...
How severe is CVE-2026-3342?
CVE-2026-3342 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-3342?
Check the references section above for vendor advisories and patch information. Affected products include: Watchguard Fireware, Watchguard Firebox T15, Watchguard Firebox T35, Watchguard Firebox M295, Watchguard Firebox M395.