NewsSecurity Vulnerabilities

WatchGuard Firebox iked Out of Bounds Write Vulnerability (CVE-2025-14733)

CVE number = CVE-2025-14733

An Out-of-bounds Write vulnerability in the WatchGuard Fireware OS iked process may allow a remote unauthenticated attacker to execute arbitrary code.

This vulnerability affects both the mobile user VPN with IKEv2 and the branch office VPN using IKEv2 when configured with a dynamic gateway peer.

If the Firebox was previously configured with the mobile user VPN with IKEv2 or a branch office VPN using IKEv2 to a dynamic gateway peer, and both of those configurations have since been deleted, that Firebox may still be vulnerable if a branch office VPN to a static gateway peer is still configured.

WatchGuard has observed threat actors actively attempting to exploit this vulnerability in the wild.

The following IP addresses are directly associated with known threat actor activity. Outbound connections to these IPs are a strong indicator of compromise. Inbound connections from these IPs could indicate reconnaissance efforts or exploit attempts.

199.247.7[.]82

45.95.19[.]50

51.15.17[.]89

172.93.107[.]67

Further details – https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00027

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.