Researchers find WatchGuard VPN bug that could allow device takeover
If you're using WatchGuard Fireware, you might want to pay attention. Researchers just revealed a critical flaw that could let hackers take over your devices. This vulnerability, dubbed CVE-20...
If you're using WatchGuard Fireware, you might want to pay attention. Researchers just revealed a critical flaw that could let hackers take over your devices. This vulnerability, dubbed CVE-2025-9242, has a scary CVSS score of 9.3, meaning it's a big deal. It affects various versions of Fireware OS, including the ones from 11.10.2 to 12.11.3 and 2025.1.
The issue lies in an out-of-bounds write vulnerability that could allow remote, unauthenticated attackers to execute arbitrary code. WatchGuard's advisory noted that both the mobile user VPN and branch office VPN are at risk when using IKEv2 with a dynamic gateway peer. Good news is, they’ve patched it in the latest updates, so if you haven’t updated yet, now's the time to do it. Stay safe out there!
More insights from the team
Continue exploring adjacent research and threat briefings selected for their relevance to this topic.
U.S. Congressional Budget Office faces suspected cyberattack
The U.S. Congressional Budget Office is in hot water after a suspected foreign cyberattack breached its network. The CBO recently confirmed the incident, raising concerns about the potential exposu...
Researchers uncover vulnerabilities in ChatGPT that expose data
Hey there! If you’re a fan of ChatGPT, you might want to pay attention. Researchers just uncovered a bunch of vulnerabilities in OpenAI's latest models, GPT-4o and GPT-5. These issues could let att...
Gootloader malware resurfaces with new tactics after seven months
Gootloader malware is back in the game after a seven-month hiatus, and it’s got some new tricks up its sleeve. This sneaky malware loader is once again using SEO poisoning to push fake websites tha...