Sensitive Information Disclosure in Palo Alto Networks Checkov by Prisma Cloud
CVE-2025-2181

5.1MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: Checkov By Prisma Cloud
Vendor: CVE Published:; 13 August 2025

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-2181?

A vulnerability in Palo Alto Networks Checkov related to Prisma Cloud enables the unintentional exposure of sensitive information, specifically Prisma Cloud access keys. This issue arises in Checkov’s output, potentially allowing unauthorized access to critical data if exploited. Organizations utilizing Checkov should update their systems to mitigate the risks associated with this vulnerability, ensuring that sensitive information remains secure.

Affected Version(s)

Checkov by Prisma Cloud 3.2.0 < 3.2.449

References

https://security.paloaltonetworks.com/CVE-2025-2181

vendor-advisory

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Aug 13, 2025
Vulnerability published
Aug 13, 2025
Vulnerability Reserved
Mar 10, 2025

Credit

Shashank Chaurasia