CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-4614

An information disclosure vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to view session tokens of users authenticated to the firewall web UI. This may allow impersonation of users whose session tokens are leaked. The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators. Cloud NGFW and Prisma® Access are not affected by this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.5%

CVSS Severity

CVSS v3 Score 2.7

References

https://security.paloaltonetworks.com/CVE-2025-4614

Products affected by CVE-2025-4614

Paloaltonetworks » Pan-Os » Version: 10.2.0

cpe:2.3:o:paloaltonetworks:pan-os:10.2.0
Paloaltonetworks » Pan-Os » Version: 10.2.1

cpe:2.3:o:paloaltonetworks:pan-os:10.2.1
Paloaltonetworks » Pan-Os » Version: 10.2.10

cpe:2.3:o:paloaltonetworks:pan-os:10.2.10
Paloaltonetworks » Pan-Os » Version: 10.2.11

cpe:2.3:o:paloaltonetworks:pan-os:10.2.11
Paloaltonetworks » Pan-Os » Version: 10.2.12

cpe:2.3:o:paloaltonetworks:pan-os:10.2.12
Paloaltonetworks » Pan-Os » Version: 10.2.13

cpe:2.3:o:paloaltonetworks:pan-os:10.2.13
Paloaltonetworks » Pan-Os » Version: 10.2.14

cpe:2.3:o:paloaltonetworks:pan-os:10.2.14
Paloaltonetworks » Pan-Os » Version: 10.2.15

cpe:2.3:o:paloaltonetworks:pan-os:10.2.15
Paloaltonetworks » Pan-Os » Version: 10.2.2

cpe:2.3:o:paloaltonetworks:pan-os:10.2.2
Paloaltonetworks » Pan-Os » Version: 10.2.3

cpe:2.3:o:paloaltonetworks:pan-os:10.2.3
Paloaltonetworks » Pan-Os » Version: 10.2.4

cpe:2.3:o:paloaltonetworks:pan-os:10.2.4
Paloaltonetworks » Pan-Os » Version: 10.2.5

cpe:2.3:o:paloaltonetworks:pan-os:10.2.5
Paloaltonetworks » Pan-Os » Version: 10.2.6

cpe:2.3:o:paloaltonetworks:pan-os:10.2.6
Paloaltonetworks » Pan-Os » Version: 10.2.7

cpe:2.3:o:paloaltonetworks:pan-os:10.2.7
Paloaltonetworks » Pan-Os » Version: 10.2.8

cpe:2.3:o:paloaltonetworks:pan-os:10.2.8
Paloaltonetworks » Pan-Os » Version: 10.2.9

cpe:2.3:o:paloaltonetworks:pan-os:10.2.9
Paloaltonetworks » Pan-Os » Version: 11.1.0

cpe:2.3:o:paloaltonetworks:pan-os:11.1.0
Paloaltonetworks » Pan-Os » Version: 11.1.1

cpe:2.3:o:paloaltonetworks:pan-os:11.1.1
Paloaltonetworks » Pan-Os » Version: 11.1.10

cpe:2.3:o:paloaltonetworks:pan-os:11.1.10
Paloaltonetworks » Pan-Os » Version: 11.1.2

cpe:2.3:o:paloaltonetworks:pan-os:11.1.2
Paloaltonetworks » Pan-Os » Version: 11.1.3

cpe:2.3:o:paloaltonetworks:pan-os:11.1.3
Paloaltonetworks » Pan-Os » Version: 11.1.4

cpe:2.3:o:paloaltonetworks:pan-os:11.1.4
Paloaltonetworks » Pan-Os » Version: 11.1.5

cpe:2.3:o:paloaltonetworks:pan-os:11.1.5
Paloaltonetworks » Pan-Os » Version: 11.1.6

cpe:2.3:o:paloaltonetworks:pan-os:11.1.6
Paloaltonetworks » Pan-Os » Version: 11.1.7

cpe:2.3:o:paloaltonetworks:pan-os:11.1.7
Paloaltonetworks » Pan-Os » Version: 11.1.8

cpe:2.3:o:paloaltonetworks:pan-os:11.1.8
Paloaltonetworks » Pan-Os » Version: 11.1.9

cpe:2.3:o:paloaltonetworks:pan-os:11.1.9
Paloaltonetworks » Pan-Os » Version: 11.2.0

cpe:2.3:o:paloaltonetworks:pan-os:11.2.0
Paloaltonetworks » Pan-Os » Version: 11.2.1

cpe:2.3:o:paloaltonetworks:pan-os:11.2.1
Paloaltonetworks » Pan-Os » Version: 11.2.2

cpe:2.3:o:paloaltonetworks:pan-os:11.2.2
Paloaltonetworks » Pan-Os » Version: 11.2.3

cpe:2.3:o:paloaltonetworks:pan-os:11.2.3
Paloaltonetworks » Pan-Os » Version: 11.2.4

cpe:2.3:o:paloaltonetworks:pan-os:11.2.4
Paloaltonetworks » Pan-Os » Version: 11.2.5

cpe:2.3:o:paloaltonetworks:pan-os:11.2.5
Paloaltonetworks » Pan-Os » Version: 11.2.6

cpe:2.3:o:paloaltonetworks:pan-os:11.2.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-4614

Products

Pricing

Contact Us