Palo Alto Networks Addresses High-Severity PAN-OS Vulnerabilities
/ 1 min read
🛡️🔧 Palo Alto Networks addresses critical vulnerabilities in PAN-OS. The company has issued security advisories for two high-severity vulnerabilities, CVE-2025-0108 and CVE-2025-0110, in its PAN-OS network security operating system. CVE-2025-0108 allows unauthenticated attackers to bypass authentication via the management web interface, while CVE-2025-0110 enables authenticated administrators to execute arbitrary commands through a command injection flaw in the OpenConfig plugin. Affected versions include various releases of PAN-OS and the OpenConfig plugin prior to specific updates. Palo Alto Networks urges users to update their software promptly and restrict access to the management interface to trusted IP addresses, recommending the disabling or uninstallation of the OpenConfig plugin if not in use.
