cvelistv5 - cve-2025-0138

CVE-2025-0138 (GCVE-0-2025-0138)

Vulnerability from cvelistv5

Published

2025-05-14 18:10

Modified

2025-06-23 15:09

Severity ?

2.0 (Low) - CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:D/RE:M/U:Amber

CWE

CWE-613 - Insufficient Session Expiration

Summary

Web sessions in the web interface of Palo Alto Networks Prisma® Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access. Compute in Prisma Cloud Enterprise Edition is not affected by this issue.

References

URL

Tags

psirt@paloaltonetworks.com

https://security.paloaltonetworks.com/CVE-2025-0138

Impacted products

Vendor

Product

Version

Palo Alto Networks

Prisma Cloud Compute Edition

Version: 1   < 34.01.129
    cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:34.00.137:*:*:*:*:*:*:*
    cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.03.138:*:*:*:*:*:*:*
    cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.02.134:*:*:*:*:*:*:*
    cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.01.137:*:*:*:*:*:*:*
    cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.07.123:*:*:*:*:*:*:*
    cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.06.113:*:*:*:*:*:*:*
    cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.05.124:*:*:*:*:*:*:*
    cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.04.113:*:*:*:*:*:*:*

Palo Alto Networks

Compute in Prisma Cloud Enterprise Edition

Patch: All

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-0138",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-14T19:44:48.071193Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-14T19:45:01.477Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:34.00.137:*:*:*:*:*:*:*",
            "cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.03.138:*:*:*:*:*:*:*",
            "cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.02.134:*:*:*:*:*:*:*",
            "cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.01.137:*:*:*:*:*:*:*",
            "cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.07.123:*:*:*:*:*:*:*",
            "cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.06.113:*:*:*:*:*:*:*",
            "cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.05.124:*:*:*:*:*:*:*",
            "cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.04.113:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "Prisma Cloud Compute Edition",
          "vendor": "Palo Alto Networks",
          "versions": [
            {
              "changes": [
                {
                  "at": "34.01.129",
                  "status": "unaffected"
                }
              ],
              "lessThan": "34.01.129",
              "status": "affected",
              "version": "1",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Compute in Prisma Cloud Enterprise Edition",
          "vendor": "Palo Alto Networks",
          "versions": [
            {
              "status": "unaffected",
              "version": "All",
              "versionType": "custom"
            }
          ]
        }
      ],
      "configurations": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eNo special configuration is required to be affected by this issue.\u003c/p\u003e"
            }
          ],
          "value": "No special configuration is required to be affected by this issue."
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Maciej Pypec of ING"
        }
      ],
      "datePublic": "2025-05-14T16:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eWeb sessions in the web interface of Palo Alto Networks Prisma\u00ae Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access.\u003c/p\u003eCompute in Prisma Cloud Enterprise Edition is not affected by this issue."
            }
          ],
          "value": "Web sessions in the web interface of Palo Alto Networks Prisma\u00ae Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access.\n\nCompute in Prisma Cloud Enterprise Edition is not affected by this issue."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue."
            }
          ],
          "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-114",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-114 Authentication Abuse"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NO",
            "Recovery": "USER",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "NETWORK",
            "baseScore": 2,
            "baseSeverity": "LOW",
            "privilegesRequired": "LOW",
            "providerUrgency": "AMBER",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "ACTIVE",
            "valueDensity": "DIFFUSE",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:D/RE:M/U:Amber",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "LOW",
            "vulnerabilityResponseEffort": "MODERATE"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-613",
              "description": "CWE-613 Insufficient Session Expiration",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-06-23T15:09:31.123Z",
        "orgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0",
        "shortName": "palo_alto"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.paloaltonetworks.com/CVE-2025-0138"
        }
      ],
      "solutions": [
        {
          "lang": "eng",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "This issue is fixed in Prisma Cloud Compute Edition 34.01.129, and all later Prisma Cloud Compute Edition versions."
            }
          ],
          "value": "This issue is fixed in Prisma Cloud Compute Edition 34.01.129, and all later Prisma Cloud Compute Edition versions."
        }
      ],
      "source": {
        "defect": [
          "CWP-62541"
        ],
        "discovery": "EXTERNAL"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2025-05-14T16:00:00.000Z",
          "value": "Initial Publication"
        }
      ],
      "title": "Prisma Cloud Compute Edition: Insufficient Session Expiration Vulnerability in the Web Interface",
      "workarounds": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eNo workaround or mitigation is available.\u003c/p\u003e"
            }
          ],
          "value": "No workaround or mitigation is available."
        }
      ],
      "x_affectedList": [
        "Prisma Cloud Compute Edition   34.00.0",
        "Prisma Cloud Compute Edition   34.00.1",
        "Prisma Cloud Compute Edition   34.00.2",
        "Prisma Cloud Compute Edition   34.00.3",
        "Prisma Cloud Compute Edition   34.00.4",
        "Prisma Cloud Compute Edition   34.00.5",
        "Prisma Cloud Compute Edition   34.00.6",
        "Prisma Cloud Compute Edition   34.00.7",
        "Prisma Cloud Compute Edition   34.00.8",
        "Prisma Cloud Compute Edition   34.00.9",
        "Prisma Cloud Compute Edition   34.00.10",
        "Prisma Cloud Compute Edition   34.00.11",
        "Prisma Cloud Compute Edition   34.00.12",
        "Prisma Cloud Compute Edition   34.00.13",
        "Prisma Cloud Compute Edition   34.00.14",
        "Prisma Cloud Compute Edition   34.00.15",
        "Prisma Cloud Compute Edition   34.00.16",
        "Prisma Cloud Compute Edition   34.00.17",
        "Prisma Cloud Compute Edition   34.00.18",
        "Prisma Cloud Compute Edition   34.00.19",
        "Prisma Cloud Compute Edition   34.00.20",
        "Prisma Cloud Compute Edition   34.00.21",
        "Prisma Cloud Compute Edition   34.00.22",
        "Prisma Cloud Compute Edition   34.00.23",
        "Prisma Cloud Compute Edition   34.00.24",
        "Prisma Cloud Compute Edition   34.00.25",
        "Prisma Cloud Compute Edition   34.00.26",
        "Prisma Cloud Compute Edition   34.00.27",
        "Prisma Cloud Compute Edition   34.00.28",
        "Prisma Cloud Compute Edition   34.00.29",
        "Prisma Cloud Compute Edition   34.00.30",
        "Prisma Cloud Compute Edition   34.00.31",
        "Prisma Cloud Compute Edition   34.00.32",
        "Prisma Cloud Compute Edition   34.00.33",
        "Prisma Cloud Compute Edition   34.00.34",
        "Prisma Cloud Compute Edition   34.00.35",
        "Prisma Cloud Compute Edition   34.00.36",
        "Prisma Cloud Compute Edition   34.00.37",
        "Prisma Cloud Compute Edition   34.00.38",
        "Prisma Cloud Compute Edition   34.00.39",
        "Prisma Cloud Compute Edition   34.00.40",
        "Prisma Cloud Compute Edition   34.00.41",
        "Prisma Cloud Compute Edition   34.00.42",
        "Prisma Cloud Compute Edition   34.00.43",
        "Prisma Cloud Compute Edition   34.00.44",
        "Prisma Cloud Compute Edition   34.00.45",
        "Prisma Cloud Compute Edition   34.00.46",
        "Prisma Cloud Compute Edition   34.00.47",
        "Prisma Cloud Compute Edition   34.00.48",
        "Prisma Cloud Compute Edition   34.00.49",
        "Prisma Cloud Compute Edition   34.00.50",
        "Prisma Cloud Compute Edition   34.00.51",
        "Prisma Cloud Compute Edition   34.00.52",
        "Prisma Cloud Compute Edition   34.00.53",
        "Prisma Cloud Compute Edition   34.00.54",
        "Prisma Cloud Compute Edition   34.00.55",
        "Prisma Cloud Compute Edition   34.00.56",
        "Prisma Cloud Compute Edition   34.00.57",
        "Prisma Cloud Compute Edition   34.00.58",
        "Prisma Cloud Compute Edition   34.00.59",
        "Prisma Cloud Compute Edition   34.00.60",
        "Prisma Cloud Compute Edition   34.00.61",
        "Prisma Cloud Compute Edition   34.00.62",
        "Prisma Cloud Compute Edition   34.00.63",
        "Prisma Cloud Compute Edition   34.00.64",
        "Prisma Cloud Compute Edition   34.00.65",
        "Prisma Cloud Compute Edition   34.00.66",
        "Prisma Cloud Compute Edition   34.00.67",
        "Prisma Cloud Compute Edition   34.00.68",
        "Prisma Cloud Compute Edition   34.00.69",
        "Prisma Cloud Compute Edition   34.00.70",
        "Prisma Cloud Compute Edition   34.00.71",
        "Prisma Cloud Compute Edition   34.00.72",
        "Prisma Cloud Compute Edition   34.00.73",
        "Prisma Cloud Compute Edition   34.00.74",
        "Prisma Cloud Compute Edition   34.00.75",
        "Prisma Cloud Compute Edition   34.00.76",
        "Prisma Cloud Compute Edition   34.00.77",
        "Prisma Cloud Compute Edition   34.00.78",
        "Prisma Cloud Compute Edition   34.00.79",
        "Prisma Cloud Compute Edition   34.00.80",
        "Prisma Cloud Compute Edition   34.00.81",
        "Prisma Cloud Compute Edition   34.00.82",
        "Prisma Cloud Compute Edition   34.00.83",
        "Prisma Cloud Compute Edition   34.00.84",
        "Prisma Cloud Compute Edition   34.00.85",
        "Prisma Cloud Compute Edition   34.00.86",
        "Prisma Cloud Compute Edition   34.00.87",
        "Prisma Cloud Compute Edition   34.00.88",
        "Prisma Cloud Compute Edition   34.00.89",
        "Prisma Cloud Compute Edition   34.00.90",
        "Prisma Cloud Compute Edition   34.00.91",
        "Prisma Cloud Compute Edition   34.00.92",
        "Prisma Cloud Compute Edition   34.00.93",
        "Prisma Cloud Compute Edition   34.00.94",
        "Prisma Cloud Compute Edition   34.00.95",
        "Prisma Cloud Compute Edition   34.00.96",
        "Prisma Cloud Compute Edition   34.00.97",
        "Prisma Cloud Compute Edition   34.00.98",
        "Prisma Cloud Compute Edition   34.00.99",
        "Prisma Cloud Compute Edition   34.00.100",
        "Prisma Cloud Compute Edition   34.00.101",
        "Prisma Cloud Compute Edition   34.00.102",
        "Prisma Cloud Compute Edition   34.00.103",
        "Prisma Cloud Compute Edition   34.00.104",
        "Prisma Cloud Compute Edition   34.00.105",
        "Prisma Cloud Compute Edition   34.00.106",
        "Prisma Cloud Compute Edition   34.00.107",
        "Prisma Cloud Compute Edition   34.00.108",
        "Prisma Cloud Compute Edition   34.00.109",
        "Prisma Cloud Compute Edition   34.00.110",
        "Prisma Cloud Compute Edition   34.00.111",
        "Prisma Cloud Compute Edition   34.00.112",
        "Prisma Cloud Compute Edition   34.00.113",
        "Prisma Cloud Compute Edition   34.00.114",
        "Prisma Cloud Compute Edition   34.00.115",
        "Prisma Cloud Compute Edition   34.00.116",
        "Prisma Cloud Compute Edition   34.00.117",
        "Prisma Cloud Compute Edition   34.00.118",
        "Prisma Cloud Compute Edition   34.00.119",
        "Prisma Cloud Compute Edition   34.00.120",
        "Prisma Cloud Compute Edition   34.00.121",
        "Prisma Cloud Compute Edition   34.00.122",
        "Prisma Cloud Compute Edition   34.00.123",
        "Prisma Cloud Compute Edition   34.00.124",
        "Prisma Cloud Compute Edition   34.00.125",
        "Prisma Cloud Compute Edition   34.00.126",
        "Prisma Cloud Compute Edition   34.00.127",
        "Prisma Cloud Compute Edition   34.00.128",
        "Prisma Cloud Compute Edition   34.00.129",
        "Prisma Cloud Compute Edition   34.00.130",
        "Prisma Cloud Compute Edition   34.00.131",
        "Prisma Cloud Compute Edition   34.00.132",
        "Prisma Cloud Compute Edition   34.00.133",
        "Prisma Cloud Compute Edition   34.00.134",
        "Prisma Cloud Compute Edition   34.00.135",
        "Prisma Cloud Compute Edition   34.00.136",
        "Prisma Cloud Compute Edition   34.00.137",
        "Prisma Cloud Compute Edition   34.00.138",
        "Prisma Cloud Compute Edition   34.00.139",
        "Prisma Cloud Compute Edition   34.00.140"
      ],
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0",
    "assignerShortName": "palo_alto",
    "cveId": "CVE-2025-0138",
    "datePublished": "2025-05-14T18:10:16.979Z",
    "dateReserved": "2024-12-20T23:24:41.254Z",
    "dateUpdated": "2025-06-23T15:09:31.123Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-0138\",\"sourceIdentifier\":\"psirt@paloaltonetworks.com\",\"published\":\"2025-05-14T19:15:52.370\",\"lastModified\":\"2025-05-16T14:43:56.797\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Web sessions in the web interface of Palo Alto Networks Prisma\u00ae Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access.\\n\\nCompute in Prisma Cloud Enterprise Edition is not affected by this issue.\"},{\"lang\":\"es\",\"value\":\"Las sesiones web en la interfaz web de Palo Alto Networks Prisma\u00ae Cloud Compute Edition no expiran al eliminar usuarios, lo que expone a Prisma Cloud Compute Edition a accesos no autorizados. Este problema no afecta a la computaci\u00f3n en Prisma Cloud Enterprise Edition.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"psirt@paloaltonetworks.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber\",\"baseScore\":2.0,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"ACTIVE\",\"vulnConfidentialityImpact\":\"NONE\",\"vulnIntegrityImpact\":\"LOW\",\"vulnAvailabilityImpact\":\"NONE\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NO\",\"Recovery\":\"USER\",\"valueDensity\":\"DIFFUSE\",\"vulnerabilityResponseEffort\":\"MODERATE\",\"providerUrgency\":\"AMBER\"}}]},\"weaknesses\":[{\"source\":\"psirt@paloaltonetworks.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-613\"}]}],\"references\":[{\"url\":\"https://security.paloaltonetworks.com/CVE-2025-0138\",\"source\":\"psirt@paloaltonetworks.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-0138\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-05-14T19:44:48.071193Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-05-14T19:44:53.690Z\"}}], \"cna\": {\"title\": \"Prisma Cloud Compute Edition: Insufficient Session Expiration Vulnerability in the Web Interface\", \"source\": {\"defect\": [\"CWP-62541\"], \"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Maciej Pypec of ING\"}], \"impacts\": [{\"capecId\": \"CAPEC-114\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-114 Authentication Abuse\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"USER\", \"baseScore\": 2, \"Automatable\": \"NO\", \"attackVector\": \"NETWORK\", \"baseSeverity\": \"LOW\", \"valueDensity\": \"DIFFUSE\", \"vectorString\": \"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:D/RE:M/U:Amber\", \"providerUrgency\": \"AMBER\", \"userInteraction\": \"ACTIVE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"LOW\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"LOW\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"NONE\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"NONE\", \"vulnerabilityResponseEffort\": \"MODERATE\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:34.00.137:*:*:*:*:*:*:*\", \"cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.03.138:*:*:*:*:*:*:*\", \"cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.02.134:*:*:*:*:*:*:*\", \"cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:33.01.137:*:*:*:*:*:*:*\", \"cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.07.123:*:*:*:*:*:*:*\", \"cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.06.113:*:*:*:*:*:*:*\", \"cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.05.124:*:*:*:*:*:*:*\", \"cpe:2.3:a:paloaltonetworks:prisma_cloud_compute_edition:32.04.113:*:*:*:*:*:*:*\"], \"vendor\": \"Palo Alto Networks\", \"product\": \"Prisma Cloud Compute Edition\", \"versions\": [{\"status\": \"affected\", \"changes\": [{\"at\": \"34.00.141\", \"status\": \"unaffected\"}], \"version\": \"1\", \"lessThan\": \"34.00.141\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Palo Alto Networks\", \"product\": \"Compute in Prisma Cloud Enterprise Edition\", \"versions\": [{\"status\": \"unaffected\", \"changes\": [{\"at\": \"11.2.5\", \"status\": \"unaffected\"}], \"version\": \"All\", \"lessThan\": \"11.2.5\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}], \"exploits\": [{\"lang\": \"en\", \"value\": \"Palo Alto Networks is not aware of any malicious exploitation of this issue.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Palo Alto Networks is not aware of any malicious exploitation of this issue.\", \"base64\": false}]}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2025-05-14T16:00:00.000Z\", \"value\": \"Initial Publication\"}], \"solutions\": [{\"lang\": \"eng\", \"value\": \"This issue is fixed in Prisma Cloud Compute Edition 34.00.141, and all later Prisma Cloud Compute Edition versions.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"This issue is fixed in Prisma Cloud Compute Edition 34.00.141, and all later Prisma Cloud Compute Edition versions.\", \"base64\": false}]}], \"datePublic\": \"2025-05-14T16:00:00.000Z\", \"references\": [{\"url\": \"https://security.paloaltonetworks.com/CVE-2025-0138\", \"tags\": [\"vendor-advisory\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"No workaround or mitigation is available.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eNo workaround or mitigation is available.\u003c/p\u003e\", \"base64\": false}]}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Web sessions in the web interface of Palo Alto Networks Prisma\\u00ae Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access.\\n\\nCompute in Prisma Cloud Enterprise Edition is not affected by this issue.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eWeb sessions in the web interface of Palo Alto Networks Prisma\\u00ae Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access.\u003c/p\u003eCompute in Prisma Cloud Enterprise Edition is not affected by this issue.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-613\", \"description\": \"CWE-613 Insufficient Session Expiration\"}]}], \"configurations\": [{\"lang\": \"en\", \"value\": \"No special configuration is required to be affected by this issue.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eNo special configuration is required to be affected by this issue.\u003c/p\u003e\", \"base64\": false}]}], \"x_affectedList\": [\"Prisma Cloud Compute Edition   34.00.0\", \"Prisma Cloud Compute Edition   34.00.1\", \"Prisma Cloud Compute Edition   34.00.2\", \"Prisma Cloud Compute Edition   34.00.3\", \"Prisma Cloud Compute Edition   34.00.4\", \"Prisma Cloud Compute Edition   34.00.5\", \"Prisma Cloud Compute Edition   34.00.6\", \"Prisma Cloud Compute Edition   34.00.7\", \"Prisma Cloud Compute Edition   34.00.8\", \"Prisma Cloud Compute Edition   34.00.9\", \"Prisma Cloud Compute Edition   34.00.10\", \"Prisma Cloud Compute Edition   34.00.11\", \"Prisma Cloud Compute Edition   34.00.12\", \"Prisma Cloud Compute Edition   34.00.13\", \"Prisma Cloud Compute Edition   34.00.14\", \"Prisma Cloud Compute Edition   34.00.15\", \"Prisma Cloud Compute Edition   34.00.16\", \"Prisma Cloud Compute Edition   34.00.17\", \"Prisma Cloud Compute Edition   34.00.18\", \"Prisma Cloud Compute Edition   34.00.19\", \"Prisma Cloud Compute Edition   34.00.20\", \"Prisma Cloud Compute Edition   34.00.21\", \"Prisma Cloud Compute Edition   34.00.22\", \"Prisma Cloud Compute Edition   34.00.23\", \"Prisma Cloud Compute Edition   34.00.24\", \"Prisma Cloud Compute Edition   34.00.25\", \"Prisma Cloud Compute Edition   34.00.26\", \"Prisma Cloud Compute Edition   34.00.27\", \"Prisma Cloud Compute Edition   34.00.28\", \"Prisma Cloud Compute Edition   34.00.29\", \"Prisma Cloud Compute Edition   34.00.30\", \"Prisma Cloud Compute Edition   34.00.31\", \"Prisma Cloud Compute Edition   34.00.32\", \"Prisma Cloud Compute Edition   34.00.33\", \"Prisma Cloud Compute Edition   34.00.34\", \"Prisma Cloud Compute Edition   34.00.35\", \"Prisma Cloud Compute Edition   34.00.36\", \"Prisma Cloud Compute Edition   34.00.37\", \"Prisma Cloud Compute Edition   34.00.38\", \"Prisma Cloud Compute Edition   34.00.39\", \"Prisma Cloud Compute Edition   34.00.40\", \"Prisma Cloud Compute Edition   34.00.41\", \"Prisma Cloud Compute Edition   34.00.42\", \"Prisma Cloud Compute Edition   34.00.43\", \"Prisma Cloud Compute Edition   34.00.44\", \"Prisma Cloud Compute Edition   34.00.45\", \"Prisma Cloud Compute Edition   34.00.46\", \"Prisma Cloud Compute Edition   34.00.47\", \"Prisma Cloud Compute Edition   34.00.48\", \"Prisma Cloud Compute Edition   34.00.49\", \"Prisma Cloud Compute Edition   34.00.50\", \"Prisma Cloud Compute Edition   34.00.51\", \"Prisma Cloud Compute Edition   34.00.52\", \"Prisma Cloud Compute Edition   34.00.53\", \"Prisma Cloud Compute Edition   34.00.54\", \"Prisma Cloud Compute Edition   34.00.55\", \"Prisma Cloud Compute Edition   34.00.56\", \"Prisma Cloud Compute Edition   34.00.57\", \"Prisma Cloud Compute Edition   34.00.58\", \"Prisma Cloud Compute Edition   34.00.59\", \"Prisma Cloud Compute Edition   34.00.60\", \"Prisma Cloud Compute Edition   34.00.61\", \"Prisma Cloud Compute Edition   34.00.62\", \"Prisma Cloud Compute Edition   34.00.63\", \"Prisma Cloud Compute Edition   34.00.64\", \"Prisma Cloud Compute Edition   34.00.65\", \"Prisma Cloud Compute Edition   34.00.66\", \"Prisma Cloud Compute Edition   34.00.67\", \"Prisma Cloud Compute Edition   34.00.68\", \"Prisma Cloud Compute Edition   34.00.69\", \"Prisma Cloud Compute Edition   34.00.70\", \"Prisma Cloud Compute Edition   34.00.71\", \"Prisma Cloud Compute Edition   34.00.72\", \"Prisma Cloud Compute Edition   34.00.73\", \"Prisma Cloud Compute Edition   34.00.74\", \"Prisma Cloud Compute Edition   34.00.75\", \"Prisma Cloud Compute Edition   34.00.76\", \"Prisma Cloud Compute Edition   34.00.77\", \"Prisma Cloud Compute Edition   34.00.78\", \"Prisma Cloud Compute Edition   34.00.79\", \"Prisma Cloud Compute Edition   34.00.80\", \"Prisma Cloud Compute Edition   34.00.81\", \"Prisma Cloud Compute Edition   34.00.82\", \"Prisma Cloud Compute Edition   34.00.83\", \"Prisma Cloud Compute Edition   34.00.84\", \"Prisma Cloud Compute Edition   34.00.85\", \"Prisma Cloud Compute Edition   34.00.86\", \"Prisma Cloud Compute Edition   34.00.87\", \"Prisma Cloud Compute Edition   34.00.88\", \"Prisma Cloud Compute Edition   34.00.89\", \"Prisma Cloud Compute Edition   34.00.90\", \"Prisma Cloud Compute Edition   34.00.91\", \"Prisma Cloud Compute Edition   34.00.92\", \"Prisma Cloud Compute Edition   34.00.93\", \"Prisma Cloud Compute Edition   34.00.94\", \"Prisma Cloud Compute Edition   34.00.95\", \"Prisma Cloud Compute Edition   34.00.96\", \"Prisma Cloud Compute Edition   34.00.97\", \"Prisma Cloud Compute Edition   34.00.98\", \"Prisma Cloud Compute Edition   34.00.99\", \"Prisma Cloud Compute Edition   34.00.100\", \"Prisma Cloud Compute Edition   34.00.101\", \"Prisma Cloud Compute Edition   34.00.102\", \"Prisma Cloud Compute Edition   34.00.103\", \"Prisma Cloud Compute Edition   34.00.104\", \"Prisma Cloud Compute Edition   34.00.105\", \"Prisma Cloud Compute Edition   34.00.106\", \"Prisma Cloud Compute Edition   34.00.107\", \"Prisma Cloud Compute Edition   34.00.108\", \"Prisma Cloud Compute Edition   34.00.109\", \"Prisma Cloud Compute Edition   34.00.110\", \"Prisma Cloud Compute Edition   34.00.111\", \"Prisma Cloud Compute Edition   34.00.112\", \"Prisma Cloud Compute Edition   34.00.113\", \"Prisma Cloud Compute Edition   34.00.114\", \"Prisma Cloud Compute Edition   34.00.115\", \"Prisma Cloud Compute Edition   34.00.116\", \"Prisma Cloud Compute Edition   34.00.117\", \"Prisma Cloud Compute Edition   34.00.118\", \"Prisma Cloud Compute Edition   34.00.119\", \"Prisma Cloud Compute Edition   34.00.120\", \"Prisma Cloud Compute Edition   34.00.121\", \"Prisma Cloud Compute Edition   34.00.122\", \"Prisma Cloud Compute Edition   34.00.123\", \"Prisma Cloud Compute Edition   34.00.124\", \"Prisma Cloud Compute Edition   34.00.125\", \"Prisma Cloud Compute Edition   34.00.126\", \"Prisma Cloud Compute Edition   34.00.127\", \"Prisma Cloud Compute Edition   34.00.128\", \"Prisma Cloud Compute Edition   34.00.129\", \"Prisma Cloud Compute Edition   34.00.130\", \"Prisma Cloud Compute Edition   34.00.131\", \"Prisma Cloud Compute Edition   34.00.132\", \"Prisma Cloud Compute Edition   34.00.133\", \"Prisma Cloud Compute Edition   34.00.134\", \"Prisma Cloud Compute Edition   34.00.135\", \"Prisma Cloud Compute Edition   34.00.136\", \"Prisma Cloud Compute Edition   34.00.137\", \"Prisma Cloud Compute Edition   34.00.138\", \"Prisma Cloud Compute Edition   34.00.139\", \"Prisma Cloud Compute Edition   34.00.140\"], \"providerMetadata\": {\"orgId\": \"d6c1279f-00f6-4ef7-9217-f89ffe703ec0\", \"shortName\": \"palo_alto\", \"dateUpdated\": \"2025-05-14T18:10:16.979Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-0138\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-05-14T19:45:01.477Z\", \"dateReserved\": \"2024-12-20T23:24:41.254Z\", \"assignerOrgId\": \"d6c1279f-00f6-4ef7-9217-f89ffe703ec0\", \"datePublished\": \"2025-05-14T18:10:16.979Z\", \"assignerShortName\": \"palo_alto\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CERTFR-2025-AVI-0410

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits Palo Alto Networks. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Les versions correctives pour la vulnérabilité CVE-2025-0133 sont prévus pour juin (PAN-OS 11.2.8), juillet (PAN-OS 11.1.11) et août 2025 (PAN-OS 10.2.17)

Impacted products

Vendor	Product	Description
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions antérieures à 6.0.0 sans les derniers correctifs de sécurité
Palo Alto Networks	PAN-OS	PAN-OS versions 11.2.x antérieures à 11.2.5
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions antérieures à 6.1.0 sans les derniers correctifs de sécurité
Palo Alto Networks	N/A	MetaDefender Endpoint Security versions antérieures à 4.3.4451 sur Windows
Palo Alto Networks	PAN-OS	PAN-OS versions antérieures à 10.1.14-h14
Palo Alto Networks	PAN-OS	PAN-OS versions 10.2.x antérieures à 10.2.13
Palo Alto Networks	Prisma Cloud Compute	Prisma Cloud Compute Edition versions antérieures à 34.00.141
Palo Alto Networks	Prisma Access	Prisma Access Browser versions antérieures à 136.11.9.93
Palo Alto Networks	PAN-OS	PAN-OS versions 11.0.x antérieures à 11.0.7
Palo Alto Networks	Cortex XDR Broker	Cortex XDR Broker VM versions antérieures à 26.0.119
Palo Alto Networks	PAN-OS	PAN-OS versions 11.1.x antérieures à 11.1.8
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions 6.2.x antérieures à 6.2.8 sur macOS
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions 6.3.x antérieures à 6.3.3 sur macOS

References

Title

Publication Time

Tags

Bulletin de sécurité Palo Alto Networks CVE-2025-0138	2025-05-14	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2025-0133	2025-05-14	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2025-0134	2025-05-14	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2025-0131	2025-05-14	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2025-0135	2025-06-06	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2025-0137	2025-05-14	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2025-0132	2025-05-14	vendor-advisory
Bulletin de sécurité Palo Alto Networks PAN-SA-2025-0009	2025-05-14	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2025-0136	2025-05-14	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2025-0130	2025-05-14	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "GlobalProtect App versions ant\u00e9rieures \u00e0 6.0.0 sans les derniers correctifs de s\u00e9curit\u00e9",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.2.x ant\u00e9rieures \u00e0 11.2.5",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect App versions ant\u00e9rieures \u00e0 6.1.0 sans les derniers correctifs de s\u00e9curit\u00e9",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "MetaDefender Endpoint Security versions ant\u00e9rieures \u00e0 4.3.4451 sur Windows",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions ant\u00e9rieures \u00e0 10.1.14-h14",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 10.2.x ant\u00e9rieures \u00e0 10.2.13",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Prisma Cloud Compute Edition versions   ant\u00e9rieures \u00e0 34.00.141",
      "product": {
        "name": "Prisma Cloud Compute",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Prisma Access Browser versions ant\u00e9rieures \u00e0 136.11.9.93",
      "product": {
        "name": "Prisma Access",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.0.x ant\u00e9rieures \u00e0 11.0.7",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Cortex XDR Broker VM versions ant\u00e9rieures \u00e0 26.0.119",
      "product": {
        "name": "Cortex XDR Broker",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.1.x ant\u00e9rieures \u00e0 11.1.8",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect App versions 6.2.x ant\u00e9rieures \u00e0 6.2.8 sur macOS",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect App versions 6.3.x ant\u00e9rieures \u00e0 6.3.3 sur macOS",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "Les versions correctives pour la vuln\u00e9rabilit\u00e9 CVE-2025-0133 sont pr\u00e9vus pour juin (PAN-OS 11.2.8),  juillet (PAN-OS 11.1.11) et ao\u00fbt 2025 (PAN-OS 10.2.17)",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-0135",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-0135"
    },
    {
      "name": "CVE-2025-3066",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3066"
    },
    {
      "name": "CVE-2025-0134",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-0134"
    },
    {
      "name": "CVE-2025-3072",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3072"
    },
    {
      "name": "CVE-2025-0138",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-0138"
    },
    {
      "name": "CVE-2025-0131",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-0131"
    },
    {
      "name": "CVE-2025-3068",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3068"
    },
    {
      "name": "CVE-2025-3619",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3619"
    },
    {
      "name": "CVE-2025-0137",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-0137"
    },
    {
      "name": "CVE-2025-4096",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-4096"
    },
    {
      "name": "CVE-2025-4052",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-4052"
    },
    {
      "name": "CVE-2025-3620",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3620"
    },
    {
      "name": "CVE-2025-0130",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-0130"
    },
    {
      "name": "CVE-2025-3067",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3067"
    },
    {
      "name": "CVE-2025-0133",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-0133"
    },
    {
      "name": "CVE-2025-0132",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-0132"
    },
    {
      "name": "CVE-2025-4372",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-4372"
    },
    {
      "name": "CVE-2025-3074",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3074"
    },
    {
      "name": "CVE-2025-4050",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-4050"
    },
    {
      "name": "CVE-2025-0136",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-0136"
    },
    {
      "name": "CVE-2025-4051",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-4051"
    },
    {
      "name": "CVE-2025-3071",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3071"
    },
    {
      "name": "CVE-2025-3069",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3069"
    },
    {
      "name": "CVE-2025-3073",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3073"
    },
    {
      "name": "CVE-2025-3070",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-3070"
    }
  ],
  "initial_release_date": "2025-05-15T00:00:00",
  "last_revision_date": "2025-05-15T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0410",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-05-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Palo Alto Networks. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Palo Alto Networks",
  "vendor_advisories": [
    {
      "published_at": "2025-05-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2025-0138",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0138"
    },
    {
      "published_at": "2025-05-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2025-0133",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0133"
    },
    {
      "published_at": "2025-05-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2025-0134",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0134"
    },
    {
      "published_at": "2025-05-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2025-0131",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0131"
    },
    {
      "published_at": "2025-06-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2025-0135",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0135"
    },
    {
      "published_at": "2025-05-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2025-0137",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0137"
    },
    {
      "published_at": "2025-05-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2025-0132",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0132"
    },
    {
      "published_at": "2025-05-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks PAN-SA-2025-0009",
      "url": "https://security.paloaltonetworks.com/PAN-SA-2025-0009"
    },
    {
      "published_at": "2025-05-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2025-0136",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0136"
    },
    {
      "published_at": "2025-05-14",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2025-0130",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0130"
    }
  ]
}

fkie_cve-2025-0138

Vulnerability from fkie_nvd

Published

2025-05-14 19:15

Modified

2025-05-16 14:43

Severity ?

2.0 (Low) - CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:D/RE:M/U:Amber

Summary

References

	URL	Tags
	psirt@paloaltonetworks.com	https://security.paloaltonetworks.com/CVE-2025-0138

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Web sessions in the web interface of Palo Alto Networks Prisma\u00ae Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access.\n\nCompute in Prisma Cloud Enterprise Edition is not affected by this issue."
    },
    {
      "lang": "es",
      "value": "Las sesiones web en la interfaz web de Palo Alto Networks Prisma\u00ae Cloud Compute Edition no expiran al eliminar usuarios, lo que expone a Prisma Cloud Compute Edition a accesos no autorizados. Este problema no afecta a la computaci\u00f3n en Prisma Cloud Enterprise Edition."
    }
  ],
  "id": "CVE-2025-0138",
  "lastModified": "2025-05-16T14:43:56.797",
  "metrics": {
    "cvssMetricV40": [
      {
        "cvssData": {
          "Automatable": "NO",
          "Recovery": "USER",
          "Safety": "NOT_DEFINED",
          "attackComplexity": "LOW",
          "attackRequirements": "PRESENT",
          "attackVector": "NETWORK",
          "availabilityRequirement": "NOT_DEFINED",
          "baseScore": 2.0,
          "baseSeverity": "LOW",
          "confidentialityRequirement": "NOT_DEFINED",
          "exploitMaturity": "NOT_DEFINED",
          "integrityRequirement": "NOT_DEFINED",
          "modifiedAttackComplexity": "NOT_DEFINED",
          "modifiedAttackRequirements": "NOT_DEFINED",
          "modifiedAttackVector": "NOT_DEFINED",
          "modifiedPrivilegesRequired": "NOT_DEFINED",
          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
          "modifiedSubIntegrityImpact": "NOT_DEFINED",
          "modifiedUserInteraction": "NOT_DEFINED",
          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
          "privilegesRequired": "LOW",
          "providerUrgency": "AMBER",
          "subAvailabilityImpact": "NONE",
          "subConfidentialityImpact": "NONE",
          "subIntegrityImpact": "NONE",
          "userInteraction": "ACTIVE",
          "valueDensity": "DIFFUSE",
          "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber",
          "version": "4.0",
          "vulnAvailabilityImpact": "NONE",
          "vulnConfidentialityImpact": "NONE",
          "vulnIntegrityImpact": "LOW",
          "vulnerabilityResponseEffort": "MODERATE"
        },
        "source": "psirt@paloaltonetworks.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-05-14T19:15:52.370",
  "references": [
    {
      "source": "psirt@paloaltonetworks.com",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0138"
    }
  ],
  "sourceIdentifier": "psirt@paloaltonetworks.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-613"
        }
      ],
      "source": "psirt@paloaltonetworks.com",
      "type": "Secondary"
    }
  ]
}

ghsa-gx4r-c3v7-5x28

Vulnerability from github

Published

2025-05-14 21:31

Modified

2025-05-14 21:31

Severity ?

2.0 (Low) - CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:D/RE:M/U:Amber

Details

Compute in Prisma Cloud Enterprise Edition is not affected by this issue.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-0138"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-613"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-05-14T19:15:52Z",
    "severity": "LOW"
  },
  "details": "Web sessions in the web interface of Palo Alto Networks Prisma\u00ae Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud Compute Edition susceptible to unauthorized access.\n\nCompute in Prisma Cloud Enterprise Edition is not affected by this issue.",
  "id": "GHSA-gx4r-c3v7-5x28",
  "modified": "2025-05-14T21:31:18Z",
  "published": "2025-05-14T21:31:18Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-0138"
    },
    {
      "type": "WEB",
      "url": "https://security.paloaltonetworks.com/CVE-2025-0138"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber",
      "type": "CVSS_V4"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2025-0138 (GCVE-0-2025-0138)

Vulnerability from cvelistv5

CERTFR-2025-AVI-0410

Vulnerability from certfr_avis

Solutions

fkie_cve-2025-0138

Vulnerability from fkie_nvd

ghsa-gx4r-c3v7-5x28

Vulnerability from github

Tags

Sightings

Nomenclature