devicefirmware.com — Firewall firmware security updates

Core manufacturers

Fortinet, Zyxel, and now a real Cisco Secure Firewall lane

This page is grounded in the current research notes and official-source dataset, then organized into a cleaner public landing page. Fortinet still leads on urgency, and the newest worthwhile addition is a FortiOS CAPWAP-daemon advisory that lands in the FortiGate control plane with explicit fixed releases and a workaround. Zyxel adds useful vendor breadth with official fixed-version guidance, and Cisco Secure Firewall now has its first indexed operator-relevant record instead of a watch-only placeholder.

Fortinet Zyxel Cisco Secure Firewall

Vendor	Update	Fixed version(s)	Published	Source
Fortinet FortiOS CAPWAP daemon	FG-IR-26-123 FortiOS CAPWAP daemon out-of-bounds write update Fortinet disclosed a high-severity CAPWAP daemon out-of-bounds write that may let an attacker controlling an authenticated FortiAP, FortiExtender, or FortiSwitch gain execution privileges on a FortiGate device, with clear fixed releases and a published workaround.	FortiOS 7.6.4+ FortiOS 7.4.9+ FortiOS 7.2.12+	2026-05-12	Official source ↗
Cisco Secure Firewall ASA / FTD	Cisco Secure Firewall ASA/FTD persistence response after CISA ED 25-03 update Cisco told operators on affected Secure Firewall ASA and FTD hardware to check for compromise, reimage if needed, and move to listed fixed releases after disclosing a persistence mechanism that can survive earlier September 2025 fixes.	ASA 9.16.4.92 / 9.18.4.135 / 9.20.4.30 / 9.22.3.5 / 9.23.1.195 / 9.24.1.155 FTD 7.0.9 + FZ-7.0.9.1-3 FTD 7.2.11 + HI-7.2.11.1-1 FTD 7.4.7 FTD 7.6.4 + CC-7.6.4.1-1 FTD 7.7.11 + AE-7.7.11.1-4	2026-04-23	Official source ↗
Zyxel USG FLEX H / uOS	Zyxel USG FLEX H privilege escalation security update Zyxel published a USG FLEX H firewall advisory covering incorrect permission assignment and improper privilege management issues that could let a local attacker escalate privileges; the vendor says patched uOS builds are available.	uOS V1.32	2025-04-22	Official source ↗
Fortinet FortiOS administrative interface	FG-IR-24-535 authentication bypass using alternate path/channel Fortinet disclosed an authentication bypass that could allow a remote attacker to gain super-admin privileges via crafted requests to the Node.js websocket module or crafted CSF proxy requests; the vendor said it was being exploited in the wild.	FortiOS 7.0.17+	2025-03-31	Official source ↗
Fortinet FortiOS SSL-VPN	FG-IR-24-015 SSL-VPN out-of-bounds write Fortinet said an out-of-bounds write in FortiOS and FortiProxy could allow remote unauthenticated code execution via crafted HTTP requests and noted potential exploitation in the wild.	7.4.3+ 7.2.7+ 7.0.14+ 6.4.15+	2025-01-15	Official source ↗