CVE-2025-0108
CRITICALCVSS v3
9.1
CRITICAL
EPSS Score
94.0%
exploit probability
CISA KEV
No
known exploited
Exploitation
—
SSVC status
Description
An authentication bypass in the Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to bypass the authentication otherwise required by the PAN-OS management web interface and invoke certain PHP scripts. While invoking these PHP scripts does not enable remote code execution, it can negatively impact integrity and confidentiality of PAN-OS. You can greatly reduce the risk of this issue by restricting access to the management web interface to only trusted internal IP addresses according to our recommended best practices deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue does not affect Cloud NGFW or Prisma Access software.
Technical Details
- Published
- 2/12/2025
Frequently Asked Questions
What is CVE-2025-0108?
An authentication bypass in the Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to bypass the authentication otherwise required by the PAN-OS management web interface and invoke certain PHP scripts. While invoking these PHP scripts does not enable remote code execution, it can negatively impact integrity and confidentiality of PAN-OS. You can greatly reduce the risk of this issue by restricting access to the management web interface to only trusted internal IP addresses according to our recommended best practices deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue does not affect Cloud NGFW or Prisma Access software.
Is CVE-2025-0108 actively exploited?
Active exploitation of CVE-2025-0108 has not been confirmed. The EPSS score is 94.0%, indicating the estimated probability of exploitation in the next 30 days.
What is the CVSS score for CVE-2025-0108?
CVE-2025-0108 has a CVSS v3 base score of 9.1 (CRITICAL severity).
Is CVE-2025-0108 affecting your environment?
Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.