Early Access — Mondoo Vulnerability Intelligence is currently in preview.

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

CVE-2025-0116 | Mondoo Vulnerability Intelligence

CVE-2025-0116

MEDIUM6.8

PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted LLDP Frame

Published Mar 12, 2025

Modified 10 months ago

Fix available

Details

A Denial of Service (DoS) vulnerability in Palo Alto Networks PAN-OS software causes the firewall to unexpectedly reboot when processing a specially crafted LLDP frame sent by an unauthenticated adjacent attacker. Repeated attempts to initiate this condition causes the firewall to enter maintenance mode.

This issue does not apply to Cloud NGFWs or Prisma Access software.

Affected Packages

PAN-OS

PANOS

Fixed in:

10.1.14-h1110.2.1410.2.13-h511.1.811.2.5

References

ADVISORYhttps://security.paloaltonetworks.com/CVE-2025-0116 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2025-0116

CVSS Analysis

CVSS v4.0

6.8

Exploitability

Attack Vector

AdjacentAV:A

Attack Complexity

LowAC:L

Attack Requirements

NoneAT:N

Privileges Required

NonePR:N

User Interaction

ActiveUI:A

Vulnerable System

Vuln. Confidentiality

NoneVC:N

Vuln. Integrity

NoneVI:N

Vuln. Availability

HighVA:H

Subsequent System

Subseq. Confidentiality

NoneSC:N

Subseq. Integrity

NoneSI:N

Subseq. Availability

NoneSA:N

6.8/CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/AU:N/R:U/V:C/RE:M/U:Amber

Weakness Type (CWE)

Other

CWE-754

Ecosystems

PANOS

Timeline

PublishedMar 12, 2025

ModifiedMar 17, 2025