Palo Alto Networks Security Advisories

Palo Alto Networks Security Advisories

ClearOptions

version

Found 7

CVSS	Summary	Versions	Affected	Unaffected	Published	Updated
3.3	CVE-2025-2182 PAN-OS: Firewall Clusters using the MACsec Protocol Expose the Connectivity Association Key (CAK)	Cloud NGFW PAN-OS PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None None on devices other than PA-7500 < 11.2.8 on PA-7500 < 11.1.10 on PA-7500 None on PA-7500 None on PA-7500 None	All All on devices other than PA-7500 >= 11.2.8 on PA-7500 >= 11.1.10 on PA-7500 All on PA-7500 All on PA-7500 All	2025-08-13	2025-08-13
2.3	CVE-2025-4229 PAN-OS: Traffic Information Disclosure Vulnerability	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.7 < 11.1.10 < 10.2.16-h1, < 10.2.17 < 10.1.14-h16 None	All >= 11.2.7 >= 11.1.10 >= 10.2.16-h1, >= 10.2.17 [ETA: Aug 2025] >= 10.1.14-h16 All	2025-06-11	2025-06-30
5.7	CVE-2025-4230 PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.6 < 11.1.6-h14, < 11.1.10 < 10.2.13-h7 < 10.1.14-h15 None	All >= 11.2.6 >= 11.1.6-h14, >= 11.1.10 >= 10.2.13-h7 >= 10.1.14-h15 All	2025-06-11	2025-06-30
1.1	CVE-2025-0137 PAN-OS: Improper Neutralization of Input in the Management Web Interface	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.5 < 11.1.6-h14, < 11.1.8 < 10.2.13 < 10.1.14-h14 None	All >= 11.2.5 >= 11.1.6-h14, >= 11.1.8 >= 10.2.13 >= 10.1.14-h14 All	2025-05-14	2025-07-11
2	CVE-2025-0133 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	All < 11.2.4-h9, < 11.2.7 < 11.1.6-h14, < 11.1.10-h1 < 10.2.16-h1 All All	None (See Mitigations and Workarounds) >= 11.2.4-h9, >= 11.2.7 >= 11.1.6-h14, >= 11.1.10-h1 >= 10.2.16-h1 None None (See Mitigations and Workarounds)	2025-05-14	2025-07-09
1.9	CVE-2025-0123 PAN-OS: Information Disclosure Vulnerability in HTTP/2 Packet Captures	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.6 < 11.1.6-h10, < 11.1.8 < 10.2.10-h21, < 10.2.15 < 10.1.14-h13 None	All >= 11.2.6 >= 11.1.6-h10, >= 11.1.8 >= 10.2.10-h21, >= 10.2.15 >= 10.1.14-h13 All	2025-04-09	2025-07-11
4.3	CVE-2025-0116 PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted LLDP Frame	Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access	None < 11.2.5 < 11.1.4-h17, < 11.1.6-h6, < 11.1.8 < 10.2.10-h17, < 10.2.13-h5, < 10.2.14 < 10.1.14-h11 None	All >= 11.2.5 >= 11.1.4-h17, >= 11.1.6-h6, >= 11.1.8 >= 10.2.10-h17, >= 10.2.13-h5, >= 10.2.14 >= 10.1.14-h11 All	2025-03-12	2025-04-04

© 2025 Palo Alto Networks, Inc. All rights reserved.