← Back

CVE-2025-0108

nvd nistnuclei
Published: Feb 12, 2025Modified: Nov 4, 2025CISA KEV

JSON object

Loading...
8.8
Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:M/U:Red
Show more
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:M/U:RedShow less
Source: psirt@paloaltonetworks.com (Secondary)

Description

An authentication bypass in the Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to bypass the authentication otherwise required by the PAN-OS management web interface and invoke certain PHP scripts. While invoking these PHP scripts does not enable remote code execution, it can negatively impact integrity and confidentiality of PAN-OS. You can greatly reduce the risk of this issue by restricting access to the management web interface to only trusted internal IP addresses according to our recommended best practices deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue does not affect Cloud NGFW or Prisma Access software.

Affected (151)

Paloaltonetworks
1 product
Pan Os
Configuration A
151 vulnerable
Vulnerable SoftwareAffected Versions
Paloaltonetworks
Pan Os
From 10.1.0 to 10.1.14
Pan Os
From 10.2.0 to 10.2.7
Pan Os
From 11.1.0 to 11.1.2
Pan Os
From 11.2.0 to 11.2.4
Pan Os
Version 10.1.14
Pan Os
Version 10.1.14 h1
Pan Os
Version 10.1.14 h2
Pan Os
Version 10.1.14 h3
Pan Os
Version 10.1.14 h4
Pan Os
Version 10.1.14 h5
Pan Os
Version 10.1.14 h6
Pan Os
Version 10.1.14 h7
Pan Os
Version 10.1.14 h8
Pan Os
Version 10.2.10
Pan Os
Version 10.2.10 h10
Pan Os
Version 10.2.10 h11
Pan Os
Version 10.2.10 h12
Pan Os
Version 10.2.10 h13
Pan Os
Version 10.2.10 h1
Pan Os
Version 10.2.10 h2
Pan Os
Version 10.2.10 h3
Pan Os
Version 10.2.10 h4
Pan Os
Version 10.2.10 h5
Pan Os
Version 10.2.10 h6
Pan Os
Version 10.2.10 h7
Pan Os
Version 10.2.10 h8
Pan Os
Version 10.2.10 h9
Pan Os
Version 10.2.11
Pan Os
Version 10.2.11 h10
Pan Os
Version 10.2.11 h11
Pan Os
Version 10.2.11 h1
Pan Os
Version 10.2.11 h2
Pan Os
Version 10.2.11 h3
Pan Os
Version 10.2.11 h4
Pan Os
Version 10.2.11 h5
Pan Os
Version 10.2.11 h6
Pan Os
Version 10.2.11 h7
Pan Os
Version 10.2.11 h8
Pan Os
Version 10.2.11 h9
Pan Os
Version 10.2.12
Pan Os
Version 10.2.12 h1
Pan Os
Version 10.2.12 h2
Pan Os
Version 10.2.12 h3
Pan Os
Version 10.2.12 h4
Pan Os
Version 10.2.12 h5
Pan Os
Version 10.2.13
Pan Os
Version 10.2.13 h1
Pan Os
Version 10.2.13 h2
Pan Os
Version 10.2.7
Pan Os
Version 10.2.7 h10
Pan Os
Version 10.2.7 h11
Pan Os
Version 10.2.7 h12
Pan Os
Version 10.2.7 h13
Pan Os
Version 10.2.7 h14
Pan Os
Version 10.2.7 h15
Pan Os
Version 10.2.7 h16
Pan Os
Version 10.2.7 h17
Pan Os
Version 10.2.7 h18
Pan Os
Version 10.2.7 h19
Pan Os
Version 10.2.7 h1
Pan Os
Version 10.2.7 h20
Pan Os
Version 10.2.7 h21
Pan Os
Version 10.2.7 h22
Pan Os
Version 10.2.7 h23
Pan Os
Version 10.2.7 h2
Pan Os
Version 10.2.7 h3
Pan Os
Version 10.2.7 h4
Pan Os
Version 10.2.7 h5
Pan Os
Version 10.2.7 h6
Pan Os
Version 10.2.7 h7
Pan Os
Version 10.2.7 h8
Pan Os
Version 10.2.7 h9
Pan Os
Version 10.2.8
Pan Os
Version 10.2.8 h10
Pan Os
Version 10.2.8 h11
Pan Os
Version 10.2.8 h12
Pan Os
Version 10.2.8 h13
Pan Os
Version 10.2.8 h14
Pan Os
Version 10.2.8 h15
Pan Os
Version 10.2.8 h16
Pan Os
Version 10.2.8 h17
Pan Os
Version 10.2.8 h18
Pan Os
Version 10.2.8 h19
Pan Os
Version 10.2.8 h1
Pan Os
Version 10.2.8 h20
Pan Os
Version 10.2.8 h2
Pan Os
Version 10.2.8 h3
Pan Os
Version 10.2.8 h4
Pan Os
Version 10.2.8 h5
Pan Os
Version 10.2.8 h6
Pan Os
Version 10.2.8 h7
Pan Os
Version 10.2.8 h8
Pan Os
Version 10.2.8 h9
Pan Os
Version 10.2.9
Pan Os
Version 10.2.9 h11
Pan Os
Version 10.2.9 h12
Pan Os
Version 10.2.9 h13
Pan Os
Version 10.2.9 h14
Pan Os
Version 10.2.9 h15
Pan Os
Version 10.2.9 h16
Pan Os
Version 10.2.9 h17
Pan Os
Version 10.2.9 h18
Pan Os
Version 10.2.9 h19
Pan Os
Version 10.2.9 h1
Pan Os
Version 10.2.9 h20
Pan Os
Version 10.2.9 h2
Pan Os
Version 10.2.9 h3
Pan Os
Version 10.2.9 h4
Pan Os
Version 10.2.9 h5
Pan Os
Version 10.2.9 h6
Pan Os
Version 10.2.9 h7
Pan Os
Version 10.2.9 h8
Pan Os
Version 10.2.9 h9
Pan Os
Version 11.1.2
Pan Os
Version 11.1.2 h10
Pan Os
Version 11.1.2 h11
Pan Os
Version 11.1.2 h12
Pan Os
Version 11.1.2 h13
Pan Os
Version 11.1.2 h14
Pan Os
Version 11.1.2 h15
Pan Os
Version 11.1.2 h16
Pan Os
Version 11.1.2 h17
Pan Os
Version 11.1.2 h1
Pan Os
Version 11.1.2 h2
Pan Os
Version 11.1.2 h3
Pan Os
Version 11.1.2 h4
Pan Os
Version 11.1.2 h5
Pan Os
Version 11.1.2 h6
Pan Os
Version 11.1.2 h7
Pan Os
Version 11.1.2 h8
Pan Os
Version 11.1.2 h9
Pan Os
Version 11.1.3
Pan Os
Version 11.1.4
Pan Os
Version 11.1.4 h10
Pan Os
Version 11.1.4 h11
Pan Os
Version 11.1.4 h12
Pan Os
Version 11.1.4 h1
Pan Os
Version 11.1.4 h2
Pan Os
Version 11.1.4 h3
Pan Os
Version 11.1.4 h4
Pan Os
Version 11.1.4 h5
Pan Os
Version 11.1.4 h6
Pan Os
Version 11.1.4 h7
Pan Os
Version 11.1.4 h8
Pan Os
Version 11.1.4 h9
Pan Os
Version 11.1.5
Pan Os
Version 11.1.6
Pan Os
Version 11.2.4
Pan Os
Version 11.2.4 h1
Pan Os
Version 11.2.4 h2
Pan Os
Version 11.2.4 h3

Related CWEs

CWE-306
Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

References (8)

Source: psirt@paloaltonetworks.com
ExploitVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPress/Media Coverage
Source: af854a3a-2127-422b-91ae-364da2661108
Press/Media CoverageThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Press/Media CoverageThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Press/Media CoverageThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Press/Media CoverageThird Party Advisory
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
US Government Resource

Timeline

No history available yet.