CSRF in Watchguard Fireware Os
CVE-2026-4315
A Cross-Site Request Forgery (CSRF) vulnerability in the WatchGuard Fireware OS WebUI could allow a remote attacker to trigger a denial-of-service (DoS) condition in the Fireware Web UI by convincing an authenticated administrator into vis…
Vulnerability class: CSRF (Cross-Site Request Forgery)
EPSS: 0.001 (22.5th percentile) — read the EPSS interpretation.
Affected products
- Watchguard Fireware Os — versions 11.8, 12.0, 12.5
Weakness classification (CWE)
References
- www.watchguard.com/wgrd-psirt/advisory/wgsa-2026-00006 (vendor-advisory)