CVE-2025-0111

MEDIUMCISA KEV

6.5

Descripcion

An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker with network access to the management web interface to read files on the PAN-OS filesystem that are readable by the “nobody” user. You can greatly reduce the risk of this issue by restricting access to the management web interface to only trusted internal IP addresses according to our recommended best practices deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue does not affect Cloud NGFW or Prisma Access software.

Detalles CVE

Puntuacion CVSS v3.16.5

SeveridadMEDIUM

Vector CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Vector de ataqueNETWORK

ComplejidadLOW

Privilegios requeridosLOW

Interaccion usuarioNONE

Publicado2/12/2025

Ultima modificacion11/4/2025

Fuentekev

Avistamientos honeypot0

CISA KEV

VendedorPalo Alto Networks

ProductoPAN-OS

Nombre vulnerabilidadPalo Alto Networks PAN-OS File Read Vulnerability

Fecha inclusion KEV2025-02-20

Fecha limite remediacion2025-03-13

Uso en ransomwareUnknown

Productos afectados

paloaltonetworks:pan-os

Debilidades (CWE)

CWE-73CWE-610

Referencias

https://security.paloaltonetworks.com/CVE-2025-0111(psirt@paloaltonetworks.com)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-0111(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.