Fireware OS — Cyber Threats, Attacks & Incidents

Threat entity extracted from intelligence sources

Frequency
12
occurrences
First Seen
November 13, 2025
Last Seen
July 6, 2026

Fireware OS is a technology platform tracked across 4 threat clusters and 12 intelligence report mentions on ThreatCluster. First observed November 13, 2025; most recent activity July 6, 2026.

Overview

Fireware OS is WatchGuard’s firewall operating system powering Firebox appliances, delivering core security services such as traffic filtering, VPN, and threat prevention. Recent reporting shows multiple critical vulnerabilities in Fireware OS being actively exploited in attacks, prompting urgent patches and advisories from authorities like CISA.

Related Threat Clusters

Recent Intelligence Reports

  • CVE-2025-9242 — www.watchguard.com · July 6, 2026
  • WatchGuard Firebox Patches Third Critical IKEv2 RCE in 10 Months, T15/T35 Still Exposed — Techtimes · July 4, 2026
  • CISA: 'Critical' WatchGuard Firebox Vulnerability Exploited In Attacks — Crn · December 19, 2025
  • WatchGuard: Patch exploited 9.3 flaw in Firebox firmware — Scmagazine · December 19, 2025
  • Critical-rated WatchGuard Firebox flaw under active attack — Theregister · December 19, 2025
  • WatchGuard sounds alarm as critical Firebox flaw comes under active attack — Theregister · December 19, 2025
  • WatchGuard fixes ‘critical’ zero — Csoonline · December 19, 2025
  • WatchGuard Firebox iked Out of Bounds Write Vulnerability — Watchguard · December 19, 2025

CVSS v3.1 Breakdown