Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News
Sign In Sign Up

CVE-2025-0111

UNKNOWN
Published 2025-02-12T20:58:43.387Z
Actions:
No CVSS data available

Description

An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker with network access to the management web interface to read files on the PAN-OS filesystem that are readable by the “nobody” user.

You can greatly reduce the risk of this issue by restricting access to the management web interface to only trusted internal IP addresses according to our recommended best practices deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 .

This issue does not affect Cloud NGFW or Prisma Access software.

Available Exploits

No exploits available for this CVE.

Related News

CVE-2025-0115 PAN-OS: Authenticated Admin File Read Vulnerability in PAN-OS CLI (Severity: MEDIUM)

Related content: How to filter spam with Spamassassin and Postfix in Debian CVE-2025-0114 PAN-OS: Denial of Service (DoS) in GlobalProtect (Severity: MEDIUM) PAN-SA-2025-0007 Chromium: Monthly Vulnerability Update (March 2025) (Severity: HIGH) CVE-2025-0111 P…

Paloaltonetworks.com 2025-04-02 20:00
Read More
CVE-2025-0116 PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted LLDP Frame (Severity: MEDIUM)

Related content: How to filter spam with Spamassassin and Postfix in Debian CVE-2025-0114 PAN-OS: Denial of Service (DoS) in GlobalProtect (Severity: MEDIUM) PAN-SA-2025-0007 Chromium: Monthly Vulnerability Update (March 2025) (Severity: HIGH) CVE-2025-0111 P…

Paloaltonetworks.com 2025-04-02 18:25
Read More
Palo Alto PAN-OS Information Disclosure Vulnerability

A vulnerability was identified in Palo Alto PAN-OS. A remote attacker can exploit this vulnerability to trigger information disclosure on the targeted system. Note: CVE-2025-0111 is being exploited in the wild. Exploitation of CVE-2025-0111 will... I…

Hkcert.org 2025-02-21 03:00
Read More
CVE-2025-0111 & CVE-2025-23209: Palo Alto Firewalls and Craft CMS Under Active Attack

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two critical security vulnerabilities to its Known Exploited The post CVE-2025-0111 & CVE-2025-23209: Palo Alto Firewalls and Craft CMS Under Active Attack appeared first on Cybersecurity News.

SecurityOnline.info 2025-02-21 02:09
Read More
CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-23209 Craft CMS Code Injection Vulnerability CVE-2025-0111 Palo Alto Networks PAN-OS File Read Vulnerab…

Cisa.gov 2025-02-20 12:00
Read More

Affected Products

Palo Alto Networks

Cloud NGFW

Affected Versions:

All
Palo Alto Networks

PAN-OS

Affected Versions:

10.1.0 10.2.0 11.1.0 11.2.0
Palo Alto Networks

Prisma Access

Affected Versions:

All

Known Exploited Vulnerability

This vulnerability is actively being exploited in the wild

View KEV Details

Remediation Status

Overdue

Due Date

March 13, 2025

Added to KEV

February 20, 2025

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Affected Product

Vendor/Project: Palo Alto Networks
Product: PAN-OS

Ransomware Risk

Known Ransomware Use
KEV Catalog Version: 2025.02.20 Released: February 20, 2025

References

https://security.paloaltonetworks.com/CVE-2025-0111
Published: 2025-02-12T20:58:43.387Z
Last Modified: 2025-02-21T04:56:10.218Z
Copied to clipboard!