← Back to CVEs
CVE-2025-0127
N/ADescription
A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. This issue does not affect firewalls that are already deployed. Cloud NGFW and Prisma® Access are not affected by this vulnerability.
CVE Details
CVSS v3.1 ScoreN/A
Published4/11/2025
Last Modified4/11/2025
Sourcenvd
Honeypot Sightings0
Weaknesses (CWE)
CWE-78
References
https://security.paloaltonetworks.com/CVE-2025-0127(psirt@paloaltonetworks.com)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.