CVE-2026-4266 in WatchGuard Fireware OS情報

要約 (英語)

An Insecure Deserialization vulnerability in WatchGuard Fireware OS allows an attacker that has obtained write access to the local filesystem through another vulnerability to execute arbitrary code in the context of the portald user.This issue affects Fireware OS: 12.1 through 12.11.8 and 2025.1 through 2026.1.2. Note, this vulnerability does not affect Firebox platforms that do not support the Access Portal feature, including the T-15 and T-35.

責任者

WatchGuard

予約する

2026年03月16日

公開

2026年03月30日

エントリ

VulDB provides additional information and datapoints for this CVE:

識別子脆弱性CWE悪用可対策CVE
354177WatchGuard Fireware OS Access Portal 特権昇格502未定義未定義CVE-2026-4266

説明

CPE

CWE

CVSS

エクスプロイト

履歴

差分

リンクする

脅威インテリジェンス

API JSON

API XML

API CSV

概要

Do you know our Splunk app?

Download it now for free!