CVE-2025-14733: WatchGuard Firebox RCE Vulnerability

WatchGuard disclosed CVE-2025-14733, a critical unauthenticated remote code execution vulnerability in the iked daemon used for IKEv2 VPN on Firebox appliances; active exploitation has been observed, CISA added the CVE to its KEV catalog, Shadowserver telemetry shows over 115,000 potentially internet-exposed devices, and WatchGuard published patched Fireware releases, mitigation guidance, and IoCs (suspicious IPs, log and process indicators) for detection and response.