CVE-2026-41288— WatchGuard Agent on Windows Privilege Escalation Vulnerability

AI Predicted 5.4 Difficulty: Moderate EPSS 0.01% · P2 Updated May 07, 2026

Possible ATT&CK Techniques 1AI

T1068 · Exploitation for Privilege Escalation

Affected Version Matrix 1

Vendor	Product	Version Range	Status
WatchGuard	WatchGuard Agent	`< 1.25.03.0000`	affected

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-41288

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

WatchGuard Agent on Windows Privilege Escalation Vulnerability

Source: NVD (National Vulnerability Database)

Vulnerability Description

Incorrect permission assignment for a resource in the patch management component of the WatchGuard Agent on Windows allows an authenticated local user to elevate their privileges to NT AUTHORITY\\SYSTEM.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

关键资源的不正确权限授予

Source: NVD (National Vulnerability Database)

Vulnerability Title

WatchGuard Agent 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

WatchGuard Agent是美国WatchGuard公司的一款终端安全防护与设备管理代理程序。 WatchGuard Agent存在安全漏洞，该漏洞源于补丁管理组件中资源权限分配不当，可能导致经过身份验证的本地用户将权限提升至NT AUTHORITYSYSTEM。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
WatchGuard	WatchGuard Agent	0 ~ 1.25.03.0000	-

II. Public POCs for CVE-2026-41288

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-41288

请登录查看更多情报信息。

Vendor Advisories for CVE-2026-41288 (1)

🔗 Stack-based Buffer Overflow in WatchGuard Agent Discovery Service on Windows Causes Denial of Service - Variant B | WatchGuard Technologies

https://nvd.nist.gov/vuln/detail/CVE-2026-41288

Same Patch Batch · WatchGuard · 2026-05-06 · 4 CVEs total

CVE-2026-41287		Stack-based Buffer Overflow in WatchGuard Agent Discovery Service on Windows Causes Denial
CVE-2026-6787		Usage of a hard-coded cryptographic key in WatchGuard Agent allows inclusion of code into
CVE-2026-6788		Uncontrolled search path in PluginLauncher allows SYSTEM code execution in WatchGuard Agen

IV. Related Vulnerabilities

Same product: WatchGuard Agent

Same vendor: WatchGuard

Same weakness: CWE-732

V. Comments for CVE-2026-41288

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-41288— WatchGuard Agent on Windows Privilege Escalation Vulnerability

Possible ATT&CK Techniques 1AI

Affected Version Matrix 1

I. Basic Information for CVE-2026-41288

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-41288

III. Intelligence Information for CVE-2026-41288

Vendor Advisories for CVE-2026-41288 (1)

Same Patch Batch · WatchGuard · 2026-05-06 · 4 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-41288

Leave a comment