CVE-2026-3344
Received
Received - Intake
Firmware Update Bypass Vulnerability in WatchGuard Fireware OS
Vulnerability report for CVE-2026-3344, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-03-03
Last updated on: 2026-03-04
Assigner: WatchGuard Technologies, Inc.
Description
Description
A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited persistence via a maliciously-crafted firmware update package.This issue affects Fireware OS 12.0 up to and including 12.11.7, 12.5.9 up to and including 12.5.16, and 2025.1 up to and including 2026.1.1.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| watchguard | fireware | From 12.0 (inc) to 12.11.8 (exc) |
| watchguard | fireware | From 12.5.9 (inc) to 12.5.17 (exc) |
| watchguard | fireware | From 2025.1 (inc) to 2026.1.2 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-440 | A feature, API, or function does not perform according to its specification. |