WatchGuard has patched a severe remote code execution vulnerability (CVE-2025-9242) affecting Firebox firewalls using IKEv2 VPN configurations. Exploitation could let attackers hijack network appliances—even if vulnerable settings were previously deleted. The disclosure follows a pattern of firewall-targeting attacks by ransomware groups.