CVE-2025-6947
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-15

Last updated on: 2025-09-16

Assigner: WatchGuard Technologies, Inc.

Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS allows Stored XSS via the SIP Proxy module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects Firebox: from 12.0 through 12.11.2.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-15
Last Modified
2025-09-16
Generated
2026-06-16
AI Q&A
2025-09-16
EPSS Evaluated
2026-06-14
NVD
CVE-2025-6947
EUVD
EUVD-2025-29269
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
watchguard fireware_os 12.0
watchguard fireware_os 12.11.2
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-79 The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a Stored Cross-site Scripting (XSS) issue in the WatchGuard Fireware OS, specifically in the SIP Proxy module. It occurs because the system does not properly neutralize input during web page generation, allowing malicious scripts to be stored and executed. Exploitation requires an authenticated administrator session on a locally managed Firebox device.

Impact Analysis

If exploited, this vulnerability could allow an attacker with administrator access to inject malicious scripts that execute in the context of the web interface. This could lead to unauthorized actions, data theft, or manipulation of the device's management interface, potentially compromising the security and integrity of the Firebox device.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-6947. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart