Vulnerability in PAN-OS Software Allows Unauthorized Data Access on Palo Alto Networks Firewalls
CVE-2025-0123

5.9MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: Cloud Ngfw; Pan-os; Prisma Access
Vendor: CVE Published:; 11 April 2025

Badges

👾 Exploit Exists

Summary

A vulnerability in Palo Alto Networks PAN-OS software permits unlicensed administrators to access clear-text data from packet captures of decrypted HTTP/2 streams on the firewall. This feature typically requires a specific license to ensure proper usage by authorized personnel. If the management interface is not adequately restricted, the risk of unauthorized access increases. While HTTP/1.1 data streams remain unaffected, organizations must maintain strict access controls and follow recommended guidelines to minimize exploitation risk.

Affected Version(s)

PAN-OS 11.2.0 < 11.2.6

PAN-OS 11.1.0 < 11.1.8

PAN-OS 10.2.0 < 10.2.15

References

https://security.paloaltonetworks.com/CVE-2025-0123

vendor-advisory

CVSS V4

Score:

5.9

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

👾
Exploit known to exist
Apr 11, 2025
Vulnerability published
Apr 11, 2025
Vulnerability Reserved
Dec 20, 2024

Credit

Saurabh Tripathi of Palo Alto Networks