Who’s affected?
A listing of the almost three dozen firewall fashions affected by CVE-2025-9242 is on the market from WatchGuard’s web site. The susceptible variations of the Fireware OS are 2025.1, 12.x, 12.5.x (T15 & T35 fashions), 12.3.1 (FIPS-certified launch), and 11.x (finish of life). These are addressed (in the identical order) by updating to variations 2025.1.1, 12.11.4, 12.5.13, and 12.3.1_Update3 (B722811).
Though all clients ought to replace, these particularly affected are within the following camp: “This vulnerability impacts each the cellular person VPN with IKEv2 and the department workplace VPN utilizing IKEv2 when configured with a dynamic gateway peer,” stated the advisory.
Nevertheless, the corporate warned that clients who had used their firewall VPNs on this manner up to now, however not accomplish that, is also affected:
