Immediate Action Required - Update Your Firebox Now

Through an internal investigation, WatchGuard has identified a new critical Fireware OS vulnerability in the IKEv2 VPN service, affecting all Firebox models and versions. A patch is now available from our Software Downloads center. 

Threat actors are attempting to exploit this vulnerability as part of a wider attack campaign against edge networking equipment and exposed infrastructure from multiple vendors. Therefore, we urge you to immediately upgrade any Firebox appliances that you own or manage.

We have reserved CVE-2025-14733 for this vulnerability. For specific information on the vulnerability, mitigation guidance, and resolution, please consult the Security Advisory (WGSA-2025-0027), which we have published in accordance with our responsible disclosure process. 

The following new firmware versions are available as of 18 December 2025 to update your Firebox appliance(s):

• Fireware 2025.1.4 or higher
• Fireware v12.11.6 or higher
• Fireware v12.5.15 or higher
• Fireware v12.3.1 Update 4 or higher

Which products are affected by this release?

Fireware 2025.1.4

• T115/T125/T145/T185/M295/M395/M495/M595/M695

Fireware 12.11.6

• NV5/T20/T25/T40/T45/T55/T70/T80/T85/M270/M290/M370/M390/M470/M570/M590/M670/M690/M4600/M4800/M5600/M5800/FireboxV/FireboxCloud

Fireware 12.5.15

• T15/T35

Fireware 12.3.1 Update 4

• T15/T35/T55/T70/M270/M370/M470/M570/M670/M4600/M5600 operating in FIPS mode for FIPS 140-2 compliance

Upgrade Now and Stay Protected

If you have any further questions, contact WatchGuard Support or your WatchGuard account representative.