CVE-2025-0111
12.02.2025, 21:15
An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker with network access to the management web interface to read files on the PAN-OS filesystem that are readable by the nobody user. You can greatly reduce the risk of this issue by restricting access to the management web interface to only trusted internal IP addresses according to our recommended best practices deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue does not affect Cloud NGFW or Prisma Access software.Enginsight
| Vendor | Product | Version |
|---|---|---|
| paloaltonetworks | pan-os | 10.1.0 ≤ 𝑥 < 10.1.14 |
| paloaltonetworks | pan-os | 10.2.0 ≤ 𝑥 < 10.2.7 |
| paloaltonetworks | pan-os | 10.2.10 ≤ 𝑥 < 10.2.12 |
| paloaltonetworks | pan-os | 11.0.0 ≤ 𝑥 < 11.1.6 |
| paloaltonetworks | pan-os | 11.2.0 ≤ 𝑥 < 11.2.4 |
| paloaltonetworks | pan-os | 10.1.14 |
| paloaltonetworks | pan-os | 10.1.14:h2 |
| paloaltonetworks | pan-os | 10.1.14:h4 |
| paloaltonetworks | pan-os | 10.1.14:h6 |
| paloaltonetworks | pan-os | 10.1.14:h8 |
| paloaltonetworks | pan-os | 10.2.7 |
| paloaltonetworks | pan-os | 10.2.7:h1 |
| paloaltonetworks | pan-os | 10.2.7:h12 |
| paloaltonetworks | pan-os | 10.2.7:h16 |
| paloaltonetworks | pan-os | 10.2.7:h18 |
| paloaltonetworks | pan-os | 10.2.7:h19 |
| paloaltonetworks | pan-os | 10.2.7:h21 |
| paloaltonetworks | pan-os | 10.2.7:h3 |
| paloaltonetworks | pan-os | 10.2.7:h6 |
| paloaltonetworks | pan-os | 10.2.7:h8 |
| paloaltonetworks | pan-os | 10.2.8 |
| paloaltonetworks | pan-os | 10.2.8:h10 |
| paloaltonetworks | pan-os | 10.2.8:h13 |
| paloaltonetworks | pan-os | 10.2.8:h15 |
| paloaltonetworks | pan-os | 10.2.8:h18 |
| paloaltonetworks | pan-os | 10.2.8:h19 |
| paloaltonetworks | pan-os | 10.2.8:h3 |
| paloaltonetworks | pan-os | 10.2.8:h4 |
| paloaltonetworks | pan-os | 10.2.9 |
| paloaltonetworks | pan-os | 10.2.9:h1 |
| paloaltonetworks | pan-os | 10.2.9:h11 |
| paloaltonetworks | pan-os | 10.2.9:h14 |
| paloaltonetworks | pan-os | 10.2.9:h16 |
| paloaltonetworks | pan-os | 10.2.9:h18 |
| paloaltonetworks | pan-os | 10.2.9:h19 |
| paloaltonetworks | pan-os | 10.2.9:h9 |
| paloaltonetworks | pan-os | 10.2.12 |
| paloaltonetworks | pan-os | 10.2.12:h1 |
| paloaltonetworks | pan-os | 10.2.12:h2 |
| paloaltonetworks | pan-os | 10.2.12:h3 |
| paloaltonetworks | pan-os | 10.2.12:h4 |
| paloaltonetworks | pan-os | 10.2.13 |
| paloaltonetworks | pan-os | 10.2.13:h1 |
| paloaltonetworks | pan-os | 10.2.13:h2 |
| paloaltonetworks | pan-os | 11.1.6 |
| paloaltonetworks | pan-os | 11.2.4 |
| paloaltonetworks | pan-os | 11.2.4:h1 |
| paloaltonetworks | pan-os | 11.2.4:h2 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-73 - External Control of File Name or PathThe software allows user input to control or influence paths or file names that are used in filesystem operations.
- CWE-610 - Externally Controlled Reference to a Resource in Another SphereThe product uses an externally controlled name or reference that resolves to a resource that is outside of the intended control sphere.