Early Access — Mondoo Vulnerability Intelligence is currently in preview.

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

CVE-2025-0127 | Mondoo Vulnerability Intelligence

CVE-2025-0127

HIGH7.1

PAN-OS: Authenticated Admin Command Injection Vulnerability in PAN-OS VM-Series

Published Apr 11, 2025

Modified 9 months ago

Fix available

Details

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. This issue does not affect firewalls that are already deployed.

Cloud NGFW and Prisma® Access are not affected by this vulnerability.

Affected Packages

PAN-OS

PANOS VM-Series

Fixed in:

10.1.14-h1310.2.911.0.4

References

ADVISORYhttps://security.paloaltonetworks.com/CVE-2025-0127 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2025-0127

CVSS Analysis

CVSS v4.0

7.1

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Attack Requirements

PresentAT:P

Privileges Required

HighPR:H

User Interaction

NoneUI:N

Vulnerable System

Vuln. Confidentiality

HighVC:H

Vuln. Integrity

HighVI:H

Vuln. Availability

HighVA:H

Subsequent System

Subseq. Confidentiality

NoneSC:N

Subseq. Integrity

NoneSI:N

Subseq. Availability

NoneSA:N

7.1/CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/AU:N/R:U/V:D/RE:M/U:Amber

Weakness Type (CWE)

Injection

CWE-78

OS Command Injection

Ecosystems

PANOS VM-Series

Timeline

PublishedApr 11, 2025

ModifiedApr 11, 2025