Use After Free in Watchguard Fireware Os
CVE-2026-13368
WatchGuard Fireware OS contains a race condition leading to a use-after-free vulnerability in LDAP authentication for the Mobile User VPN with IKEv2. A remote unauthenticated attacker could exploit this vulnerability to execute arbitrary c…
Vulnerability class: Use-After-Free
Affected products
- Watchguard Fireware Os — versions 11.10.2, 12.0, 12.5
Weakness classification (CWE)
References
- 5d1c2695-1a31-4499-88ae-e847036fd7e3 (vendor-advisory)