← Back
2026-05-06 15:46CVE-2026-6788WatchGuard
PUBLISHED5.2CWE-427

Uncontrolled search path in PluginLauncher allows SYSTEM code execution in WatchGuard Agent

Uncontrolled Search Path Element vulnerability in WatchGuard Agent on Windows allows Using Malicious Files.This issue affects WatchGuard Agent before 1.25.03.0000.

Problem type

Affected products

WatchGuard

WatchGuard Agent

< 1.25.03.0000 - AFFECTED

References

watchguard.com

https://www.watchguard.com/wgrd-psirt/advisory/WGSA-2026-00013

GitHub Security Advisories

GHSA-j336-jmmp-f6w9

Uncontrolled Search Path Element vulnerability in WatchGuard Agent on Windows allows Using...

https://github.com/advisories/GHSA-j336-jmmp-f6w9

Uncontrolled Search Path Element vulnerability in WatchGuard Agent on Windows allows Using Malicious Files.This issue affects WatchGuard Agent before 1.25.03.0000.

nvd.nist.gov

https://nvd.nist.gov/vuln/detail/CVE-2026-6788

watchguard.com

https://www.watchguard.com/wgrd-psirt/advisory/WGSA-2026-00013

github.com

https://github.com/advisories/GHSA-j336-jmmp-f6w9

JSON source

https://cveawg.mitre.org/api/cve/CVE-2026-6788
Click to expand
{
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "cveMetadata": {
    "cveId": "CVE-2026-6788",
    "assignerOrgId": "5d1c2695-1a31-4499-88ae-e847036fd7e3",
    "assignerShortName": "WatchGuard",
    "dateUpdated": "2026-05-06T16:13:28.284Z",
    "dateReserved": "2026-04-21T13:21:21.676Z",
    "datePublished": "2026-05-06T15:46:48.269Z",
    "state": "PUBLISHED"
  },
  "containers": {
    "cna": {
      "providerMetadata": {
        "orgId": "5d1c2695-1a31-4499-88ae-e847036fd7e3",
        "shortName": "WatchGuard",
        "dateUpdated": "2026-05-06T15:46:48.269Z"
      },
      "title": "Uncontrolled search path in PluginLauncher allows SYSTEM code execution in WatchGuard Agent",
      "descriptions": [
        {
          "lang": "en",
          "value": "Uncontrolled Search Path Element vulnerability in WatchGuard Agent on Windows allows Using Malicious Files.This issue affects WatchGuard Agent before 1.25.03.0000.",
          "supportingMedia": [
            {
              "type": "text/html",
              "base64": false,
              "value": "Uncontrolled Search Path Element vulnerability&nbsp;in WatchGuard Agent on Windows allows Using Malicious Files.<p>This issue affects WatchGuard Agent&nbsp;before 1.25.03.0000.</p>"
            }
          ]
        }
      ],
      "affected": [
        {
          "vendor": "WatchGuard",
          "product": "WatchGuard Agent",
          "platforms": [
            "Windows"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "0",
              "status": "affected",
              "versionType": "custom",
              "lessThan": "1.25.03.0000"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "lang": "en",
              "description": "CWE-427 Uncontrolled Search Path Element",
              "cweId": "CWE-427",
              "type": "CWE"
            }
          ]
        }
      ],
      "references": [
        {
          "url": "https://www.watchguard.com/wgrd-psirt/advisory/WGSA-2026-00013"
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-17",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-17 Using Malicious Files"
            }
          ]
        }
      ],
      "metrics": [
        {
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ]
    },
    "adp": [
      {
        "providerMetadata": {
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP",
          "dateUpdated": "2026-05-06T16:13:28.284Z"
        },
        "title": "CISA ADP Vulnrichment",
        "metrics": [
          {}
        ]
      }
    ]
  }
}