Security Advisory

CVE-2025-0127

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-11 02:01:35

Last updated 2025-04-11 16:01:52

Assigner palo_alto

State PUBLISHED

Description

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. This issue does not affect firewalls that are already deployed. Cloud NGFW and Prisma® Access are not affected by this vulnerability.

← Browse all CVEs View on cve.org ↗