CVE-2025-14733 - PatchNow

Data Source: CIRCL

Confidence: HIGH

Exploitation Method: DIRECT_NETWORK

CVE Published: 2025-12-19

Added to CISA KEV: 2025-12-19 0 DAY BETWEEN CVE AND KEV

CRITICAL: Check for indicators of compromise - this vulnerability is in CISA KEV indicating active exploitation in the wild. Review logs, check for unauthorized access, verify system integrity
IMMEDIATE: Apply security patches to affected WatchGuard Fireware OS versions (upgrade to 11.12.4_Update2+, 12.12.0+, or 2025.1.4+)
URGENT: Review IKEv2 VPN configurations and temporarily disable IKEv2 with dynamic gateway peers if patching cannot be completed immediately
Monitor VPN connection logs for suspicious authentication attempts or unusual traffic patterns
Verify firewall rule configurations and review recent configuration changes
Patch priority: CRITICAL - Apply within 24-48 hours due to active exploitation

Based on the search results, here's what is known about the CVE-2025-14733 vulnerability exploitation:

CISA Known Exploited Vulnerabilities (KEV) Status: CISA added CVE-2025-14733 to its KEV catalog, based on evidence of active exploitation ^[3]^[4]. CISA maintains the KEV catalog as an authoritative source of vulnerabilities exploited in the wild, recommending organizations use it to prioritize vulnerability management ^[2]. They require Federal Civilian Executive Branch (FCEB) agencies to remediate KEV vulnerabilities by a specified due date ^[5].

Active Exploitation: CISA added CVE-2025-14733 to the KEV catalog due to evidence of active exploitation ^[3]^[4].

Attack Vectors: The search results generally state that threat actors frequently use these types of vulnerabilities as attack vectors ^[1].

Impacted Products: While not explicitly stated in the search results, the vulnerability may affect internet-facing applications and services, given CISA's focus on vulnerabilities posing significant risks to the federal enterprise ^[1] and the inclusion of actively exploited vulnerabilities in their catalog ^[2].

CISA Adds Three Known Exploited Vulnerabilities to Catalog
These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of know…
Known Exploited Vulnerabilities Catalog
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild. Organizations should use the KEV catal…
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-14611…
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.Read more…
CISA Adds Two Known Exploited Vulnerabilities to Catalog | CISA
BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information. Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all o…

🔴 CVE-2025-14733