Early Access — Mondoo Vulnerability Intelligence is currently in preview.

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

CVE-2025-4230 | Mondoo Vulnerability Intelligence

CVE-2025-4230

HIGH8.4

PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI

Published Jun 12, 2025

Modified 7 months ago

Fix available

Details

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI.

The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators.

Cloud NGFW and Prisma® Access are not affected by this vulnerability.

Affected Packages

PAN-OS

PANOS

Fixed in:

10.1.14-h1510.2.1411.1.1011.2.6

References

ADVISORYhttps://security.paloaltonetworks.com/CVE-2025-4230 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2025-4230

CVSS Analysis

CVSS v4.0

8.4

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Attack Requirements

NoneAT:N

Privileges Required

HighPR:H

User Interaction

NoneUI:N

Vulnerable System

Vuln. Confidentiality

HighVC:H

Vuln. Integrity

HighVI:H

Vuln. Availability

HighVA:H

Subsequent System

Subseq. Confidentiality

NoneSC:N

Subseq. Integrity

NoneSI:N

Subseq. Availability

NoneSA:N

8.4/CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/R:U/V:D/U:Amber

Weakness Type (CWE)

Injection

CWE-78

OS Command Injection

Ecosystems

PANOS

Timeline

PublishedJun 12, 2025

ModifiedJun 13, 2025