Vulnerability Description
A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is only applicable to PAN-OS VM-Series. This issue does not affect firewalls that are already deployed. Cloud NGFW and Prisma® Access are not affected by this vulnerability.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-0127?
CVE-2025-0127 is a documented vulnerability. A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. This issue is o...
How severe is CVE-2025-0127?
CVSS scoring is not yet available for CVE-2025-0127. Check NVD for updates.
Is there a patch for CVE-2025-0127?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.