{"document":{"category":"csaf_vex","csaf_version":"2.0","title":"CVE-2026-8247: WatchGuard Firebox admd Out of Bounds Write Vulnerability","publisher":{"category":"vendor","name":"HarborGuard Database","namespace":"https://database.harborguard.co"},"tracking":{"id":"CVE-2026-8247","status":"final","version":"1","initial_release_date":"2026-07-02T23:07:16.148Z","current_release_date":"2026-07-02T23:07:16.148Z","revision_history":[{"date":"2026-07-02T23:07:16.148Z","number":"1","summary":"Initial machine-readable export from HarborGuard."}]},"distribution":{"tlp":{"label":"WHITE"},"text":"Public CVE data; freely redistributable."},"notes":[{"category":"description","text":"An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow an unauthenticated attacker on the same local network segment to execute arbitrary code.\n\n\n\n\nThis vulnerability affects Fireware OS 11.0 up to and including 11.12.4_Update1, 12.0 up to and including 12.12 and 2025.1 up to and including 2026.2.","title":"CVE description"}],"references":[{"category":"self","summary":"CVE-2026-8247 on HarborGuard Database","url":"https://database.harborguard.co/cve/CVE-2026-8247"},{"category":"external","summary":"CVE Record","url":"https://www.cve.org/CVERecord?id=CVE-2026-8247"},{"category":"external","summary":"watchguard.com","url":"https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2026-00026"}]},"product_tree":{"branches":[{"category":"vendor","name":"WatchGuard","branches":[{"category":"product_name","name":"Fireware OS","branches":[{"category":"product_version_range","name":">=11.0 <=11.12.4+541730","product":{"name":"WatchGuard Fireware OS >=11.0 <=11.12.4+541730","product_id":"CSAFPID-1","product_identification_helper":{"cpe":"cpe:2.3:a:watchguard:fireware_os:*:*:*:*:*:*:*:*"}}},{"category":"product_version_range","name":">=12.0 <=12.12","product":{"name":"WatchGuard Fireware OS >=12.0 <=12.12","product_id":"CSAFPID-2","product_identification_helper":{"cpe":"cpe:2.3:a:watchguard:fireware_os:*:*:*:*:*:*:*:*"}}},{"category":"product_version_range","name":">=12.5 <=12.5.18","product":{"name":"WatchGuard Fireware OS >=12.5 <=12.5.18","product_id":"CSAFPID-3","product_identification_helper":{"cpe":"cpe:2.3:a:watchguard:fireware_os:*:*:*:*:*:*:*:*"}}},{"category":"product_version_range","name":">=2025.1 <=2026.2","product":{"name":"WatchGuard Fireware OS >=2025.1 <=2026.2","product_id":"CSAFPID-4","product_identification_helper":{"cpe":"cpe:2.3:a:watchguard:fireware_os:*:*:*:*:*:*:*:*"}}}]}]}]},"vulnerabilities":[{"cve":"CVE-2026-8247","title":"WatchGuard Firebox admd Out of Bounds Write Vulnerability","notes":[{"category":"description","text":"An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow an unauthenticated attacker on the same local network segment to execute arbitrary code.\n\n\n\n\nThis vulnerability affects Fireware OS 11.0 up to and including 11.12.4_Update1, 12.0 up to and including 12.12 and 2025.1 up to and including 2026.2.","title":"CVE description"}],"product_status":{"known_affected":["CSAFPID-1","CSAFPID-2","CSAFPID-3","CSAFPID-4"]},"scores":[{"cvss_v4":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N","baseScore":7.7,"baseSeverity":"HIGH"},"products":["CSAFPID-1","CSAFPID-2","CSAFPID-3","CSAFPID-4"]}],"remediations":[{"category":"none_available","details":"No fixed version is published yet. Monitor the upstream advisory.","product_ids":["CSAFPID-1","CSAFPID-2","CSAFPID-3","CSAFPID-4"]}]}]}