WatchGuard has issued a critical security update for its Mobile VPN with IPSec client for Windows, addressing a serious privilege escalation vulnerability that could allow local attackers to execute arbitrary commands with SYSTEM-level privileges. The flaw, identified as NCPVE-2025-0626 and referenced in WatchGuard’s advisory WGSA-2026-00002, originates from code supplied by NCP engineering, the software vendor […] The post WatchGuard VPN Client for Windows Flaw Enables SYSTEM-Level Command Execution appeared first on Cyber Security News.