An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and execute arbitrary commands. The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators. Cloud NGFW and Prisma® Access are not affected by this vulnerability.
2025-10-09T19:15:43.490
2025-10-22T17:50:00.587
Analyzed
CVSSv3.1: 7.2 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | paloaltonetworks | pan-os | < 10.2.17 | Yes |
| Operating System | paloaltonetworks | pan-os | < 11.1.11 | Yes |
| Operating System | paloaltonetworks | pan-os | < 11.2.8 | Yes |