CVE-2025-1910

The WatchGuard Mobile VPN with SSL Client on Windows allows a locally 
authenticated non-administrative Windows user to escalate their 
privileges to NT AUTHORITY/SYSTEM on the Windows machine where the VPN 
Client is installed.This issue affects the Mobile VPN with SSL Client 12.0 up to and including 12.11.2.
Command Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
WatchGuardCNA
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 4%
Common Weakness Enumeration
References
https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00008