CVE-2025-0115

PAN-OS: Authenticated Admin File Read Vulnerability in PAN-OS CLI

Description

A vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated admin on the PAN-OS CLI to read arbitrary files. The attacker must have network access to the management interface (web, SSH, console, or telnet) and successfully authenticate to exploit this issue. You can greatly reduce the risk of this issue by restricting access to the management interface to only trusted users and internal IP addresses according to our recommended critical deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue does not affect Cloud NGFW or Prisma Access.

INFO

Published Date :

2025-03-12T18:30:13.503Z

Last Modified :

2025-03-17T15:22:51.814Z

Source :

palo_alto

AFFECTED PRODUCTS

The following products are affected by CVE-2025-0115 vulnerability.

Vendors	Products
Paloaltonetworks	Pan-os

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-0115.

URL	Resource
https://security.paloaltonetworks.com/CVE-2025-0115

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability