Command Injection Vulnerability in Palo Alto Networks PAN-OS Software
CVE-2025-4230

8.4HIGH

Key Information:

Vendor: Palo Alto Networks
Status: Cloud Ngfw; Pan-os; Prisma Access
Vendor: CVE Published:; 13 June 2025

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-4230?

A command injection issue in Palo Alto Networks PAN-OS software allows an authenticated administrator to bypass crucial system restrictions, enabling them to execute arbitrary commands with root privileges. This vulnerability requires that an administrator has access to the PAN-OS command line interface (CLI). To mitigate the risks associated with this flaw, it is essential to limit CLI access to a small, trusted group of administrators. Notably, services such as Cloud NGFW and Prisma Access are unaffected by this vulnerability.

Affected Version(s)

PAN-OS 11.2.0 < 11.2.6

PAN-OS 11.1.0 < 11.1.10

PAN-OS 10.2.0 < 10.2.14

References

https://security.paloaltonetworks.com/CVE-2025-4230

vendor-advisory

CVSS V4

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 13, 2025
👾
Exploit known to exist
Jun 12, 2025
Vulnerability Reserved
May 2, 2025

Credit

Visa Inc.