CVE-2025-0130

High CVSS: 8.2

A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful attempts to trigger this condition will cause the firewall to enter maintenance mode.

This issue does not affect Cloud NGFW or Prisma Access.

Vendor

Paloaltonetworks

Product

Pan-os

CWE

CWE-754

Yayın Tarihi

2025-05-14 18:15:29

Güncelleme

2025-10-06 16:18:22

Source Identifier

psirt@paloaltonetworks.com

KEV Date Added

Kategoriler

CWE-754 Pan-os HIGH Paloaltonetworks 2025

Referanslar

https://security.paloaltonetworks.com/CVE-2025-0130

Benzer Kayıtlar

Medium

CVE-2026-0227

A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service (…

Medium

CVE-2025-4614

An information disclosure vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to…

Medium

CVE-2025-4615

An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® softwar…

Low

CVE-2025-4227

An improper access control vulnerability in the Endpoint Traffic Policy Enforcement https://docs.paloaltonetworks.com/g…

High

CVE-2025-4231

A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated administrative user to perform…

High

CVE-2025-4232

An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks GlobalProtect™…