{"vulnerability": "CVE-2026-13368", "sightings": [{"uuid": "f20aa89c-6f60-4d39-a95c-3863c226a5b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13368", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116854244966360117", "content": "A severe vulnerability was disclosed for WatchGuard Fireware OS (CVE-2026-13368) https://vuldb.com/vuln/376018", "creation_timestamp": "2026-07-03T04:51:15.468240Z"}, {"uuid": "0c1eafe9-0a0d-4216-8bc0-2d035f71042b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-13368", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116853455394559161", "content": "CVE-2026-13368 (CRITICAL, CVSS 9.2): WatchGuard Fireware OS LDAP auth flaw in Mobile VPN with IKEv2 allows remote code execution (iked process). Disable affected configs or restrict access until patch. https://radar.offseq.com/threat/cve-2026-13368-cwe-416-use-after-free-in-watchguar-10bc07017e60512c #OffSeq #WatchGuard #CVE202613368 #Infosec", "creation_timestamp": "2026-07-03T01:30:27.887733Z"}, {"uuid": "531fd2b3-9b3e-403b-b9f9-332e72fe13cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-13368", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mppfjee3ij2p", "content": "CRITICAL: WatchGuard Fireware OS (11.0 \u2013 12.12, 2025.1 \u2013 2026.2) has a use-after-free bug (CVE-2026-13368, CVSS 9.2) in LDAP auth for IKEv2 VPN. Disable affected configs or limit exposure until patch. https://radar.offseq.com/threat/cve-2026-13368-cwe-416-use-after-free-in-watchguar-10bc07017e605...", "creation_timestamp": "2026-07-03T01:30:30.812404Z"}, {"uuid": "d3cd9159-0512-488c-925e-60bdbfaa96ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13368", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mpphkozy7m2e", "content": "WatchGuard Firebox vulnerabilities include a critical unauthenticated RCE (CVE-2026-13368, CVSS 9.2) plus six more Fireware OS flaws. Patch now.\n\n#WatchGuard #Firebox #CVE202613368 #FirewareOS #CyberSecurity", "creation_timestamp": "2026-07-03T02:07:01.753201Z"}, {"uuid": "b250a58d-bd38-4914-95a9-e5afcb4beb7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13368", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mppj4ppzjl24", "content": "CVE-2026-13368 - WatchGuard Firebox Race Condition and Use-After-Free in Mobile VPN with IKEv2 LDAP Authentication\nCVE ID : CVE-2026-13368\n \n Published : July 2, 2026, 11:06 p.m. | 2\u00a0hours, 40\u00a0minutes ago\n \n Description : WatchGuard Fireware OS contains a race condition leadin...", "creation_timestamp": "2026-07-03T02:34:59.756252Z"}, {"uuid": "c5976c1b-da46-4d42-a86f-b8471ccb2cef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13368", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mprabw6peg2m", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-13368 \u0432 WatchGuard Fireware OS: \u0443\u0433\u0440\u043e\u0437\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044f \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0451\u043d\u043d\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438\n\n\n\nhttps://kripta.biz/posts/8567BCCC-AFA1-4E47-88BE-C0A96082F410", "creation_timestamp": "2026-07-03T19:02:19.181316Z"}, {"uuid": "8a6876ad-002e-4961-92bd-9286c1a1ead8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-13368", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mprkdobjuw2i", "content": "CVE-2026-13368 - fireware os\nA vulnerability in WatchGuard Firebox's Mobile User VPN with IKEv2 allows an attacker to run unauthorized code on affected devices. This affects WatchGuard Firebox devices\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#firewareos #watchguard #CVE #infosec", "creation_timestamp": "2026-07-03T22:02:06.314680Z"}]}