CVE-2025-2782

Published: Mar 28, 2025

Modified: Mar 31, 2025

PUBLISHED

Description

The WatchGuard Terminal Services Agent on Windows does not properly configure directory permissions when installed in a non-default directory. This could allow an authenticated local attacker to escalate to SYSTEM privileges on a vulnerable system. This issue affects Terminal Services Agent: from 12.0 through 12.10.

Vendor	Product	Versions
WatchGuard	Terminal Services Agent	affected `12.0 - <= 12.10`

Weaknesses (CWE)

CWE-276

References

https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2025-00005

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-2782

Description

Affected Products

Weaknesses (CWE)

References