CVE-2026-3343

CVSS Score & Metrics

Base Score

6.1 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N                                    

Vulnerability Description

A reflected cross-site scripting (XSS) vulnerability in the Fireware OS Web UI enabled execution of malicious JavaScript in the context of an authenticated management user's browser when they click on a specially crafted link.

This vulnerability affects Fireware OS 12.7 up to and including 12.11.7 and 2025.1 up to and including 2026.1.1.

Vulnerability Details

Published Date

March 03, 2026

Last Modified

March 04, 2026

CWE ID

CWE-79

Source

NVD

Vendor

watchguard

Product

fireware

External References

https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2026-0004

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment