Insufficient Cache Implementation in Palo Alto Networks Prisma Access Browser
CVE-2025-4233

5.1MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: Prisma Access Browser
Vendor: CVE Published:; 12 June 2025

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-4233?

An inadequately implemented cache vulnerability in the Palo Alto Networks Prisma Access Browser allows users to circumvent specific data control policies, potentially leading to unauthorized access to sensitive information. This flaw emphasizes the need for robust cache management and security measures to protect data integrity and prevent misuse.

Affected Version(s)

Prisma Access Browser 0 < 136.24.1.93

References

https://security.paloaltonetworks.com/CVE-2025-4233

vendor-advisory

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Jun 12, 2025
Vulnerability published
Jun 12, 2025
Vulnerability Reserved
May 2, 2025

Credit

Palo Alto Networks thanks Tan Inn Fung, Yu Ann Ong, Zhang Bosen from the GovTech Cybersecurity Group for discovering and reporting this issue.