Palo Alto Networks Releases Patch for PAN-OS Vulnerability
/ 1 min read
🔒💻 Palo Alto Networks addresses critical security flaw in PAN-OS software. The company has patched a high-severity vulnerability, tracked as CVE-2025-0108, which allows unauthenticated attackers to bypass authentication on the management web interface, potentially compromising the integrity and confidentiality of PAN-OS. This flaw, with a CVSS score of 7.8, affects several versions of PAN-OS, including 11.2, 11.1, 10.2, and 10.1, with fixes available in the latest updates. Additionally, Palo Alto Networks resolved two other vulnerabilities, CVE-2025-0109 and CVE-2025-0110, which involve file deletion and command injection, respectively. Users are advised to restrict access to the management interface and consider disabling the OpenConfig plugin if not in use.
