CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0129 – Prisma Access Browser: Inappropriate control behavior in Prisma Access Browser
https://notcve.org/view.php?id=CVE-2025-0129
11 Apr 2025 — Prisma Access Browser: Inappropriate control behavior in Prisma Access Browser • https://security.paloaltonetworks.com/PAN-SA-2025-0008 •
CVSS: 5.9EPSS: 0%CPEs: 3EXPL: 0CVE-2025-0123 – PAN-OS: Information Disclosure Vulnerability in HTTP/2 Packet Captures
https://notcve.org/view.php?id=CVE-2025-0123
11 Apr 2025 — A vulnerability in the Palo Alto Networks PAN-OS® software enables unlicensed administrators to view clear-text data captured using the packet capture feature https://docs.paloaltonetworks.com/pan-os/11-0/pan-os-admin/monitoring/take-packet-captures/take-a-custom-packet-capture in decrypted HTTP/2 data streams traversing network interfaces on the firewall. HTTP/1.1 data streams are not impacted. In normal conditions, decrypted packet captures are available to firewall administrators after they obtain and in... • https://security.paloaltonetworks.com/CVE-2025-0123 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0119 – Cortex XDR Broker VM: Authenticated Command Injection Vulnerability in Broker VM
https://notcve.org/view.php?id=CVE-2025-0119
11 Apr 2025 — A command injection vulnerability in the Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to execute arbitrary OS commands with root privileges on the host operating system running Broker VM. A command injection vulnerability in the Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to execute arbitrary OS commands with root privileges on the host operating system running Broker VM. • https://security.paloaltonetworks.com/CVE-2025-0119 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.7EPSS: 0%CPEs: 3EXPL: 0CVE-2025-0128 – PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet
https://notcve.org/view.php?id=CVE-2025-0128
11 Apr 2025 — A denial-of-service (DoS) vulnerability in the Simple Certificate Enrollment Protocol (SCEP) authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode. Cloud NGFW is not affected by this vulnerability. Prisma® Access software is proactively patched and protected from this issue. • https://security.paloaltonetworks.com/CVE-2025-0128 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 9.0EPSS: 0%CPEs: 2EXPL: 0CVE-2025-0127 – PAN-OS: Authenticated Admin Command Injection Vulnerability in PAN-OS VM-Series
https://notcve.org/view.php?id=CVE-2025-0127
11 Apr 2025 — A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. This issue does not affect firewalls that are already deployed. Cloud NGFW and Prisma® Access are not affected by this vulnerability. • https://security.paloaltonetworks.com/CVE-2025-0127 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2025-0126 – PAN-OS: Session Fixation Vulnerability in GlobalProtect SAML Login
https://notcve.org/view.php?id=CVE-2025-0126
11 Apr 2025 — When configured using SAML, a session fixation vulnerability in the GlobalProtect™ login enables an attacker to impersonate a legitimate authorized user and perform actions as that GlobalProtect user. This requires the legitimate user to first click on a malicious link provided by the attacker. The SAML login for the PAN-OS® management interface is not affected. Additionally, this issue does not affect Cloud NGFW and all Prisma® Access instances are proactively patched. • https://security.paloaltonetworks.com/CVE-2025-0126 • CWE-384: Session Fixation •
CVSS: 8.7EPSS: 0%CPEs: 4EXPL: 0CVE-2025-0125 – PAN-OS: Improper Neutralization of Input in the Management Web Interface
https://notcve.org/view.php?id=CVE-2025-0125
11 Apr 2025 — An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables a malicious authenticated read-write administrator to impersonate another legitimate authenticated PAN-OS administrator. The attacker must have network access to the management web interface to exploit this issue. You greatly reduce the risk of this issue by restricting access to the management web interface to only trusted internal IP addresses according to our recommended criti... • https://security.paloaltonetworks.com/CVE-2025-0125 • CWE-83: Improper Neutralization of Script in Attributes in a Web Page •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2025-0124 – PAN-OS: Authenticated File Deletion Vulnerability on the Management Web Interface
https://notcve.org/view.php?id=CVE-2025-0124
11 Apr 2025 — An authenticated file deletion vulnerability in the Palo Alto Networks PAN-OS® software enables an authenticated attacker with network access to the management web interface to delete certain files as the “nobody” user; this includes limited logs and configuration files but does not include system files. The attacker must have network access to the management web interface to exploit this issue. You greatly reduce the risk of this issue by restricting access to the management web interface to only trusted i... • https://security.paloaltonetworks.com/CVE-2025-0124 • CWE-73: External Control of File Name or Path •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2025-0122 – Prisma SD-WAN: Denial of Service (DoS) Vulnerability Through Burst of Crafted Packets
https://notcve.org/view.php?id=CVE-2025-0122
11 Apr 2025 — A denial-of-service (DoS) vulnerability in Palo Alto Networks Prisma® SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to disrupt the packet processing capabilities of the device by sending a burst of crafted packets to that device. • https://security.paloaltonetworks.com/CVE-2025-0122 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2025-0121 – Cortex XDR Agent: Local Windows User Can Crash the Agent
https://notcve.org/view.php?id=CVE-2025-0121
11 Apr 2025 — A null pointer dereference vulnerability in the Palo Alto Networks Cortex® XDR agent on Windows devices allows a low-privileged local Windows user to crash the agent. Additionally, malware can use this vulnerability to perform malicious activity without Cortex XDR being able to detect it. • https://security.paloaltonetworks.com/CVE-2025-0121 • CWE-476: NULL Pointer Dereference •