Skip to main content

Fireware Os CVE-2026-3987

| EUVD-2026-18090 HIGH
Path Traversal (CWE-22)
2026-04-01 WatchGuard GHSA-8r96-cj5h-474x
Path Traversal RCE Fireware Os
8.6
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
8.6 HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
X

Lifecycle Timeline

3
EUVD ID Assigned
Apr 01, 2026 - 22:16 euvd
EUVD-2026-18090
Analysis Generated
Apr 01, 2026 - 22:16 vuln.today
CVE Published
Apr 01, 2026 - 21:32 nvd
HIGH 8.6

DescriptionCVE.org

A path traversal vulnerability in the Fireware OS Web UI on WatchGuard Firebox systems may allow a privileged authenticated remote attacker to execute arbitrary code in the context of an elevated system process.This issue affects Fireware OS 12.6.1 up to and including 12.11.8 and 2025.1 up to and including 2026.1.2.

AnalysisAI

Remote code execution in WatchGuard Fireware OS versions 12.6.1 through 12.11.8 and 2025.1 through 2026.1.2 allows privileged authenticated attackers to execute arbitrary code with elevated system privileges via path traversal in the Web UI. The vulnerability requires high-level administrative access (CVSS PR:H) but presents a direct RCE path once authenticated. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate as privileged admin user
Exploit
Craft path traversal payload in Web UI
Execution
Traverse to restricted system directory
Impact
Execute arbitrary code in elevated process context
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Requires high-privilege authenticated access to WatchGuard Firebox Fireware OS Web UI (versions 12.6.1–12.11.8 or 2025.1–2026.1.2). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 score of 8.6 reflects high confidentiality, integrity, and availability impact (VC:H/VI:H/VA:H) with network attack vector (AV:N) and low complexity (AC:L), but critically requires high privileges (PR:H). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has compromised administrative credentials for a WatchGuard Firebox (through phishing, credential stuffing, or prior network compromise) authenticates to the Web UI management interface over the network. Exploiting the path traversal vulnerability with low attack complexity, the attacker crafts malicious requests containing directory traversal sequences to access restricted filesystem locations. …
Remediation Organizations should immediately consult WatchGuard's official security advisory at https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2026-00009 for patch availability and specific upgrade instructions. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: Inventory all WatchGuard Firewall OS deployments and identify systems running versions 12.6.1-12.11.8 or 2025.1-2026.1.2. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-3987 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy