Palo Alto Networks PAN-OS Improper Input Neutralization Vulnerability in Management Web Interface Allowing Command Execution

Vulnerability

A vulnerability allowing improper input neutralization has been identified in the management web interface of Palo Alto Networks PAN-OS software. This vulnerability enables an authenticated administrator to bypass system restrictions and execute arbitrary commands. The security risk is notably reduced when CLI access is limited to a select group of administrators. It is important to note that this vulnerability does not affect Cloud NGFW or Prisma Access.

Impact

Exploitation of this vulnerability could lead to unauthorized command execution on the affected system.

Added: Oct 9, 2025, 7:19 PM

Updated: Oct 9, 2025, 7:19 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

4.4

remediation

0.0

relevance

0.6

threat

0.0

urgency

5.7

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

4.4

remediation

0.0

relevance

0.6

threat

0.0

urgency

5.7

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Palo Alto Networks PAN-OS Improper Input Neutralization Vulnerability in Management Web Interface Allowing Command Execution

Vulnerability

Impact

Affected Products

Palo Alto Networks PAN-OS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating