Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News
Sign In Sign Up

CVE-2025-0138

UNKNOWN
Published 2025-05-14T18:10:16.979Z
Actions:
No CVSS data available

Description

Web sessions in the web interface of Palo Alto Networks Prisma® Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access.

Compute in Prisma Cloud Enterprise Edition is not affected by this issue.

Available Exploits

No exploits available for this CVE.

Related News

CVE-2025-0138 Prisma Cloud Compute Edition: Insufficient Session Expiration Vulnerability in the Web Interface (Severity: LOW)

Related content: PAN-SA-2025-0009 Chromium: Monthly Vulnerability Update (May 2025) (Severity: HIGH) CVE-2024-5916 PAN-OS: Cleartext Exposure of External System Secrets (Severity: MEDIUM) CVE-2025-0132 Cortex XDR Broker VM: Unauthenticated User Can Disable In…

Paloaltonetworks.com 2025-05-14 16:00
Read More

Affected Products

Palo Alto Networks

Prisma Cloud Compute Edition

Affected Versions:

1
Palo Alto Networks

Compute in Prisma Cloud Enterprise Edition

Affected Versions:

All

References

https://security.paloaltonetworks.com/CVE-2025-0138
Published: 2025-05-14T18:10:16.979Z
Last Modified: 2025-05-14T19:45:01.477Z
Copied to clipboard!