Information Exposure Vulnerability in Palo Alto Networks User-ID Credential Agent
CVE-2025-4235

5.8MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: User-id Credential Agent
Vendor: CVE Published:; 12 September 2025

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-4235?

A vulnerability in the Palo Alto Networks User-ID Credential Agent can lead to unauthorized exposure of service account credentials when configured incorrectly. This weakness can allow unprivileged Domain Users to exploit the permissions of the affected account, potentially leading to privilege escalation. Depending on the configuration, impacts can range from service disruptions of the User-ID Credential Agent, which may disable critical credential protection features, to significant security breaches involving server control and domain manipulation. Proper configuration and monitoring are essential to mitigate the risks associated with this vulnerability.

Affected Version(s)

User-ID Credential Agent Windows 11.0.0

References

https://security.paloaltonetworks.com/CVE-2025-4235

vendor-advisory

CVSS V4

Score:

5.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Sep 12, 2025
Vulnerability published
Sep 12, 2025
Vulnerability Reserved
May 2, 2025

Credit

Palo Alto Networks thanks an external reporter for discovering and reporting this issue.