DEV Community

Cover image for WatchGuard Patches Third Critical IKEv2 RCE in Firebox Appliances
BeyondMachines for BeyondMachines

Posted on • Originally published at beyondmachines.net

WatchGuard Patches Third Critical IKEv2 RCE in Firebox Appliances

Summary

WatchGuard patched a critical pre-authentication RCE vulnerability (CVE-2026-13368) in Firebox appliances. The vulnerability allows unauthenticated attackers to gain administrative control. Legacy T15 and T35 models currently do not have a patch.

Take Action:

If you use WatchGuard Firebox firewalls, read the advisory in detail. Plan a very quick update to Fireware OS 2026.2.1 or 12.12.1. If you run legacy T15/T35 models, disable external LDAP authentication for IKEv2 as a temporary fix, and if you're on version 11.x, migrate to supported hardware since no patch is coming.


Read the full article on BeyondMachines


This article was originally published on BeyondMachines

Top comments (0)