Immediate patching advised: All three vulnerabilities affect PAN-OS versions 10.1, 10.2, 11.1, and 11.2, and have received patches respectively. Palo Alto Networks confirmed that its Cloud NGFW and Prisma Access services are not impacted.As a workaround, admins are advised to restrict access to the management web interface to only trusted internal IP addresses. Even then, unpatched systems may remain vulnerable with reduced risks. Additionally, customers with a Threat Prevention subscription could block attack attempts looking to exploit CVE-2025-0108 and CVE-2025-0111 by enabling Threat ID 510000 ad 510001, the advisory added.
First seen on csoonline.com
Jump to article: www.csoonline.com/article/3827829/hackers-gain-root-access-to-palo-alto-firewalls-through-chained-bugs.html
