WatchGuard Agent on Windows Local Privilege Escalation to SYSTEM via Chained Agent Service Vulnerabilities

Advisory ID

WGSA-2026-00013

CVE

CVE-2026-6787, CVE-2026-6788

Impact

High

Status

Resolved

Product Family

Other Software

Published Date

2026-05-06

Updated Date

2026-05-06

Workaround Available

False

CVSS Score

8.5

CVSS Vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H

Summary

Local privilege escalation to SYSTEM in Single WatchGuard Agent via chained agent service vulnerabilities

Affected

This vulnerability affects the WatchGuard Agent on Windows versions up to and including 1.25.02.0000.

Resolution

This vulnerability is resolved in the WatchGuard Agent on Windows version 1.25.03.0000.

Advisory Product List

Product Family	Product Branch	Product List
Other Software	WatchGuard Agent (Windows)	WatchGuard Agent (Windows)