The Download
A critical vulnerability, identified as CVE-2025-0108, has been discovered in Palo Alto Networks' PAN-OS, the operating system powering their firewalls. This flaw allows unauthenticated attackers with network access to the management web interface to bypass authentication and execute specific PHP scripts. While this does not permit remote code execution, it significantly compromises the system's integrity and confidentiality. Exploiting this vulnerability, especially when combined with others like CVE-2024-9474, enables attackers to gain unauthorized access to unpatched and unsecured firewalls, potentially leading to data breaches and network infiltration.
What You Can Do
To safeguard against this threat, IT administrators should promptly update their PAN-OS to the latest versions: 11.2.4-h4, 11.1.6-h1, 10.2.13-h3, or 10.1.14-h9. It's crucial to restrict access to the management web interface, ensuring only trusted internal IP addresses can connect, thereby minimizing exposure to potential attacks. Regularly monitoring network traffic for unusual activities and adhering to Palo Alto Networks' best practice security guidelines will further enhance the security posture against such vulnerabilities.
ThreatMate helps you identify vulnerabilities in your attack surface. Sign up today to demo ThreatMate.
To Learn More: