CVE-2025-0130 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2025-0130?

CVE-2025-0130 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-0130?

Check the references section above for vendor advisories and patch information. Affected products include: Paloaltonetworks Pan-Os.

Vulnerability Description

A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful attempts to trigger this condition will cause the firewall to enter maintenance mode. This issue does not affect Cloud NGFW or Prisma Access.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Paloaltonetworks	Pan-Os	>= 11.1.0, < 11.1.6

Related Weaknesses (CWE)

CWE-754

References

https://security.paloaltonetworks.com/CVE-2025-0130Vendor Advisory

FAQ

What is CVE-2025-0130?

CVE-2025-0130 is a vulnerability with a CVSS score of 7.5 (HIGH). A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the fi...

How severe is CVE-2025-0130?

CVE-2025-0130 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-0130?

Check the references section above for vendor advisories and patch information. Affected products include: Paloaltonetworks Pan-Os.