Denial-of-Service Vulnerability in Palo Alto Networks Prisma SD-WAN ION Devices
CVE-2025-0122

5.1MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: Prisma Sd-wan
Vendor: CVE Published:; 11 April 2025

Badges

👾 Exploit Exists

Summary

A denial-of-service vulnerability exists in Palo Alto Networks Prisma SD-WAN ION devices, allowing unauthenticated attackers on the same network to disrupt the device's packet processing abilities. By transmitting a sequence of specially crafted packets, an adversary can effectively overload the device, leading to a service outage and impacting network operations.

Affected Version(s)

Prisma SD-WAN 6.5.0 < 6.5.1

Prisma SD-WAN 6.4.0 < 6.4.2

Prisma SD-WAN 6.3.0 < 6.3.4

References

https://security.paloaltonetworks.com/CVE-2025-0122

vendor-advisory

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

👾
Exploit known to exist
Apr 11, 2025
Vulnerability published
Apr 11, 2025
Vulnerability Reserved
Dec 20, 2024

Credit

Vajrapu Venkata Sarat Kumar of Palo Alto Networks