CVE-2026-3343 – A reflected cross-site scripting (XSS) vulnerability in the Fireware OS Web UI enabled …

Vuln ID: CVE-2026-3343

Published: 2026-03-03 14:15:57.687

Description: A reflected cross-site scripting (XSS) vulnerability in the Fireware OS Web UI enabled execution of malicious JavaScript in the context of an authenticated management user’s browser when they click on a specially crafted link.

This vulnerability affects Fireware OS 12.7 up to and including 12.11.7 and 2025.1 up to and including 2026.1.1.

Base Score: –

Vector:

Source: NVD.NIST.GOV

Date:

3 March 2026

Categorie(s):

NVD

Tag(s):

NVD

Hackers Don’t Break in Anymore — They Log In10 March 2026
The Government Must Not Force Companies to Participate in AI-powered Surveillance10 March 2026
Critical Microsoft Excel bug weaponizes Copilot Agent for zero-click information disclosure attack10 March 2026
AWS European Sovereign Cloud achieves first compliance milestone: SOC 2 and C5 reports plus seven ISO certifications10 March 2026
Microsoft’s monthly Patch Tuesday is first in 6 months with no actively exploited zero-days10 March 2026