{"document":{"category":"csaf_vex","csaf_version":"2.1","notes":[{"category":"summary","text":"Palo Alto Networks PSIRT provided VEX document. This document is autogenerated.","title":"Informational Bulletin: No Impact of the Marvin Attack on PAN-OS"}],"publisher":{"category":"vendor","name":"Palo Alto Networks","namespace":"https://security.paloaltonetworks.com"},"title":"Palo Alto Networks PSIRT provided VEX document: PAN-SA-2025-0010","distribution":{"text":"Copyright © 2024 Palo Alto Networks. All rights reserved.","tlp":{"label":"CLEAR","url":"https://www.first.org/tlp/"}},"tracking":{"current_release_date":"2026-04-11T00:32:25.244Z","generator":{"date":"2026-04-11T00:32:25.244Z","engine":{"name":"Vulnogram","version":"0.1.0-dev"}},"id":"PAN-SA-2025-0010","initial_release_date":"2025-05-14T16:00:00.000Z","revision_history":[{"number":"1","date":"2025-05-14T09:00:00.000Z","summary":"Initial Publication"}],"status":"final","version":"1"}},"product_tree":{"branches":[{"name":"Palo Alto Networks","category":"vendor","branches":[{"name":"PAN-OS","category":"product_name","branches":[{"category":"product_version","name":"PAN-OS All","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-1"}},{"category":"product_version_range","name":"vers:generic/PAN-OS <10.2.11|<11.0.6|<11.1.5","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-690"}},{"category":"product_version_range","name":"vers:generic/PAN-OS >=10.2.11|>=11.0.6|>=11.1.5","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-691"}},{"category":"product_version_range","name":"vers:generic/PAN-OS <10.2.5|<11.0.2","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-39"}},{"category":"product_version_range","name":"vers:generic/PAN-OS >=10.2.5|>=11.0.2","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-40"}}]}]}]},"vulnerabilities":[{"cve":"CVE-2024-29995","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable opensc library."}],"references":[{"category":"external","summary":"NVD - CVE-2024-29995","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-29995"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable opensc library."}]},{"cve":"CVE-2024-26306","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable iperf3 component."}],"references":[{"category":"external","summary":"NVD - CVE-2024-26306","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-26306"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable iperf3 component."}]},{"cve":"CVE-2024-23170","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable Mbed TLS component."}],"references":[{"category":"external","summary":"NVD - CVE-2024-23170","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-23170"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable Mbed TLS component."}]},{"cve":"CVE-2024-21484","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable jsrsasign package."}],"references":[{"category":"external","summary":"NVD - CVE-2024-21484","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-21484"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable jsrsasign package."}]},{"cve":"CVE-2024-20952","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable openjdk package."}],"references":[{"category":"external","summary":"NVD - CVE-2024-20952","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-20952"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable openjdk package."}]},{"cve":"CVE-2024-2236","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable component of libgcrypt library."}],"references":[{"category":"external","summary":"NVD - CVE-2024-2236","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-2236"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable component of libgcrypt library."}]},{"cve":"CVE-2024-0914","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable package."}],"references":[{"category":"external","summary":"NVD - CVE-2024-0914","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-0914"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable package."}]},{"cve":"CVE-2024-0202","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable cryptlib cryptographic library."}],"references":[{"category":"external","summary":"NVD - CVE-2024-0202","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-0202"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable cryptlib cryptographic library."}]},{"cve":"CVE-2023-46809","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable subcomponent."}],"references":[{"category":"external","summary":"NVD - CVE-2023-46809","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-46809"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable subcomponent."}]},{"cve":"CVE-2023-6240","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable subcomponent."}],"references":[{"category":"external","summary":"NVD - CVE-2023-6240","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-6240"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable subcomponent."}]},{"cve":"CVE-2023-5992","product_status":{"known_not_affected":["PANW-PAN-OS-1"]},"notes":[{"category":"description","text":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable opensc library."}],"references":[{"category":"external","summary":"NVD - CVE-2023-5992","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5992"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE does not affect PAN-OS as PAN-OS does not have the vulnerable opensc library."}]},{"cve":"CVE-2023-5388","product_status":{"fixed":["PANW-PAN-OS-691"],"known_affected":["PANW-PAN-OS-690"]},"notes":[{"category":"description","text":"This CVE is fixed in PAN-OS 10.2.11, PAN-OS 11.0.6, PAN-OS 11.1.5 and all later versions of PAN-OS."}],"references":[{"category":"external","summary":"NVD - CVE-2023-5388","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5388"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE is fixed in PAN-OS 10.2.11, PAN-OS 11.0.6, PAN-OS 11.1.5 and all later versions of PAN-OS."}]},{"cve":"CVE-2023-4421","product_status":{"fixed":["PANW-PAN-OS-691"],"known_affected":["PANW-PAN-OS-690"]},"notes":[{"category":"description","text":"This CVE is fixed in PAN-OS 10.2.11, PAN-OS 11.0.6, PAN-OS 11.1.5 and all later versions of PAN-OS."}],"references":[{"category":"external","summary":"NVD - CVE-2023-4421","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4421"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE is fixed in PAN-OS 10.2.11, PAN-OS 11.0.6, PAN-OS 11.1.5 and all later versions of PAN-OS."}]},{"cve":"CVE-2022-4304","product_status":{"fixed":["PANW-PAN-OS-40"],"known_affected":["PANW-PAN-OS-39"]},"notes":[{"category":"description","text":"This CVE is fixed in PAN-OS 10.2.5, PAN-OS 11.0.2 and all later versions of PAN-OS."}],"references":[{"category":"external","summary":"NVD - CVE-2022-4304","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-4304"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0010","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0010"}],"threats":[{"category":"impact","description":"This CVE is fixed in PAN-OS 10.2.5, PAN-OS 11.0.2 and all later versions of PAN-OS."}]}]}