CVSS Summary Versions Affected Unaffected Published Updated 6.1 PAN-SA-2025-0014
Chromium: Monthly Vulnerability Update (August 2025) 2025-08-13 2025-08-13 1.1 CVE-2025-2180
Checkov by Prisma Cloud: Unsafe Deserialization of Terraform Files Allows Code Execution Checkov by Prisma Cloud 3.2.0
2025-08-13 2025-08-13 2 CVE-2025-2181
Checkov by Prisma Cloud: Cleartext Exposure of Credentials Checkov by Prisma Cloud 3.2.0
2025-08-13 2025-08-13 3.3 CVE-2025-2182
PAN-OS: Firewall Clusters using the MACsec Protocol Expose the Connectivity Association Key (CAK) Cloud NGFW
PAN-OS
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None on devices other than PA-7500
< 11.2.8 on PA-7500
< 11.1.10 on PA-7500
None on PA-7500
None on PA-7500
None
All
All on devices other than PA-7500
>= 11.2.8 on PA-7500
>= 11.1.10 on PA-7500
All on PA-7500
All on PA-7500
All
2025-08-13 2025-08-13 4.5 CVE-2025-2183
GlobalProtect App: Improper Certificate Validation Leads to Privilege Escalation Global Protect UWP App
GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
None
None on Android, None on iOS, None on macOS
< 6.3.3-h2 (6.3.3-c676) on Windows, < 6.3.3 on Linux
< 6.2.8-h3 (6.2.8-c263) on Windows, All on Linux
All on Windows, All on Linux
All on Windows, All on Linux
All
All on Android, All on iOS, All on macOS
>= 6.3.3-h2 (6.3.3-c676) on Windows*, >= 6.3.3 on Linux (ETA: 9/1)*
>= 6.2.8-h3 (6.2.8-c263) on Windows*, None on Linux
None on Windows, None on Linux
None on Windows*, None on Linux
2025-08-13 2025-08-13 4.9 CVE-2025-2184
Cortex XDR Broker VM: Secrets Shared Across Multiple Broker VM Images Cortex XDR Broker VM 28.0.0
2025-08-13 2025-08-13 4.3 CVE-2025-2179
GlobalProtect App: Non Admin User Can Disable the GlobalProtect App GlobalProtect App
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
GlobalProtect UWP App
None on Android, None on Chrome OS, None on iOS, None on Windows, None on macOS
< 6.2.9 on Linux
All on Linux
All on Linux
None
All on Android, All on Chrome OS, All on iOS, All on Windows, All on macOS
>= 6.2.9 on Linux
None on Linux
None on Linux
All
2025-07-28 2025-07-28 i PAN-SA-2025-0012
Informational Bulletin: OSS CVEs Fixed in PAN-OS
2025-07-09 2025-07-09 8.6 PAN-SA-2025-0013
Chromium: Monthly Vulnerability Update (July 2025) 2025-07-09 2025-07-09 2.4 CVE-2025-0139
Autonomous Digital Experience Manager: Privilege Escalation (PE) Vulnerability Autonomous Digital Experience Manager 5.6.0
2025-07-09 2025-08-13 4.3 CVE-2025-0140
GlobalProtect App: Non Admin User Can Disable the GlobalProtect App GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
GlobalProtect UWP App
None on Android, None on Chrome OS, None on iOS, None on Windows, None on Linux
< 6.3.3-h1 (6.3.3-c650) on macOS
< 6.2.8-h2 (6.2.8-c243) on macOS
All on macOS
All on macOS
None
All on Android, All on Chrome OS, All on iOS, All on Windows, All on Linux
>= 6.3.3-h1 (6.3.3-c650) on macOS
>= 6.2.8-h2 (6.2.8-c243) on macOS
None on macOS
None on macOS
All
2025-07-09 2025-07-28 5.7 CVE-2025-0141
GlobalProtect App: Privilege Escalation (PE) Vulnerability GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
GlobalProtect UWP App
None on Android, None on Chrome OS, None on iOS
< 6.3.3-h1 (6.3.3-c650) on macOS, < 6.3.3-h1 (6.3.3-c650) on Windows
< 6.2.8-h2 (6.2.8-c243) on macOS, < 6.2.8-h2 (6.2.8-c243) on Windows, < 6.2.8 on Linux
All on macOS, All on Windows, All on Linux
All on macOS, All on Windows, All on Linux
None
All on Android, All on Chrome OS, All on iOS
>= 6.3.3-h1 (6.3.3-c650) on macOS, >= 6.3.3-h1 (6.3.3-c650) on Windows
>= 6.2.8-h2 (6.2.8-c243) on macOS, >= 6.2.8-h2 (6.2.8-c243) on Windows, >= 6.2.8 on Linux
None on macOS, None on Windows, None on Linux
None on macOS, None on Windows, None on Linux
All
2025-07-09 2025-07-18 8.6 PAN-SA-2025-0011
Chromium and Prisma Access Browser: Monthly Vulnerability Update (June 2025) 2025-06-11 2025-06-11 5.7 CVE-2025-4232
GlobalProtect: Authenticated Code Injection Through Wildcard on macOS GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
None on Windows, Linux, Android, iOS, Chrome OS
< 6.3.3 on macOS
< 6.2.8-h2 [6.2.8-c243] on macOS
All on macOS
All on macOS
All on Windows, Linux, Android, iOS, Chrome OS
>= 6.3.3 on macOS
>= 6.2.8-h2 [6.2.8-c243] on macOS
None on macOS
None on macOS
2025-06-11 2025-07-16 6.1 CVE-2025-4231
PAN-OS: Authenticated Admin Command Injection Vulnerability in the Management Web Interface Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 11.0
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
None
None
< 11.0.3
< 10.2.8
All
None
All
All
All
>= 11.0.3
>= 10.2.8
None
All
2025-06-11 2025-06-11 5.7 CVE-2025-4230
PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.6
< 11.1.6-h14, < 11.1.10
< 10.2.13-h7
< 10.1.14-h15
None
All
>= 11.2.6
>= 11.1.6-h14, >= 11.1.10
>= 10.2.13-h7
>= 10.1.14-h15
All
2025-06-11 2025-06-30 2.3 CVE-2025-4229
PAN-OS: Traffic Information Disclosure Vulnerability Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.7
< 11.1.10
< 10.2.16-h1, < 10.2.17
< 10.1.14-h16
None
All
>= 11.2.7
>= 11.1.10
>= 10.2.16-h1, >= 10.2.17 [ETA: Aug 2025]
>= 10.1.14-h16
All
2025-06-11 2025-06-30 1 CVE-2025-4228
Cortex XDR Broker VM: Privilege Escalation (PE) Vulnerability 2025-06-11 2025-06-11 0.3 CVE-2025-4227
GlobalProtect App: Interception in Endpoint Traffic Policy Enforcement GlobalProtect App
GlobalProtect App 6.3
GlobalProtect App 6.2
GlobalProtect App 6.1
GlobalProtect App 6.0
None on Linux, Android, iOS, Chrome OS, UWP ¹
< 6.3.3-h1 [6.3.3-c650] on Windows, macOS
< 6.2.8-h2 [6.2.8-c243] on Windows, macOS
All on Windows, macOS
All on Windows, macOS
All on Linux, Android, iOS, Chrome OS, UWP ¹
>= 6.3.3-h1 [6.3.3-c650] on Windows, macOS
>= 6.2.8-h2 [6.2.8-c243] on Windows, macOS
None on Windows, macOS
None on Windows, macOS
2025-06-11 2025-06-13 7.6 PAN-SA-2025-0009
Chromium: Monthly Vulnerability Update (May 2025) 2025-05-14 2025-05-15 4.6 CVE-2025-0130
PAN-OS: Firewall Denial-of-Service (DoS) in the Web-Proxy Feature via a Burst of Maliciously Crafted Packets Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.5
< 11.1.6-h1, < 11.1.7-h2, < 11.1.8
None
None
None
All
>= 11.2.5
>= 11.1.6-h1, >= 11.1.7-h2, >= 11.1.8
All
All
All
2025-05-14 2025-05-14 4 CVE-2025-0131
GlobalProtect App: Incorrect Privilege Management Vulnerability in OPSWAT MetaDefender Endpoint Security SDK MetaDefender Endpoint Security SDK 4.3.0
2025-05-14 2025-05-14 2.7 CVE-2025-0132
Cortex XDR Broker VM: Unauthenticated User Can Disable Internal Services Cortex XDR Broker VM 26.0.0
2025-05-14 2025-05-14 2 CVE-2025-0133
PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
All
< 11.2.4-h9, < 11.2.7
< 11.1.6-h14, < 11.1.10-h1
< 10.2.16-h1
All
All
None (See Mitigations and Workarounds)
>= 11.2.4-h9, >= 11.2.7
>= 11.1.6-h14, >= 11.1.10-h1
>= 10.2.16-h1
None
None (See Mitigations and Workarounds)
2025-05-14 2025-07-09 2.6 CVE-2025-0134
Cortex XDR Broker VM: Authenticated Code Injection Vulnerability in Broker VM Cortex XDR Broker VM 26.0.0
2025-05-14 2025-05-14
